[Webkit-unassigned] [Bug 26076] New: Regression: Custom highlighting (via -webkit-highlight) can crash
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri May 29 03:08:34 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=26076
Summary: Regression: Custom highlighting (via -webkit-highlight)
can crash
Product: WebKit
Version: 528+ (Nightly build)
Platform: Macintosh
OS/Version: Mac OS X 10.5
Status: UNCONFIRMED
Severity: Major
Priority: P2
Component: WebKit API
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: kai at granus.net
The functions WebChromeClient::customHighlightRect() and
WebChromeClient::paintCustomHighlight() get passed a node. With Changeset 40871
(committed 2009-02-11), the passed node can be 0, which results in a crash.
I include a test case which crashes when opening.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list