[Webkit-unassigned] [Bug 31891] New: Off-by-one error in index validation for drawElements and drawArrays
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Nov 25 16:11:25 PST 2009
https://bugs.webkit.org/show_bug.cgi?id=31891
Summary: Off-by-one error in index validation for drawElements
and drawArrays
Product: WebKit
Version: 528+ (Nightly build)
Platform: All
OS/Version: All
Status: UNCONFIRMED
Severity: Major
Priority: P1
Component: WebGL
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: kbr at google.com
CC: oliver at apple.com, brettw at chromium.org,
cmarrin at apple.com, rlp at google.com,
petersont at google.com
There is an off-by-one error in the index validation introduced in
https://bugs.webkit.org/show_bug.cgi?id=31239 which is one of the reasons some
demos no longer work. The computation of the available elements in the bound
array buffers does not take into account the fact that for the last element,
the number of bytes touched is only that of the data itself, not including the
stride.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list