[Webkit-unassigned] [Bug 30116] WebCore::InsertLineBreakCommand::shouldUseBreakElement ReadAV at NULL
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Jun 4 11:14:13 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=30116
--- Comment #5 from Ryosuke Niwa <rniwa at webkit.org> 2010-06-04 11:14:12 PST ---
Created an attachment (id=57897)
--> (https://bugs.webkit.org/attachment.cgi?id=57897)
reduction
Reduction steps:
1. Open the page
2. Trigger CR(13) keydown event inside textarea
3. WebKit crashes (TOT 60682)
The exact problem is that selection is invalidated inside InsertLineBreak. So inside InsertLineBreakCommand::doApply(), caret is null and the first place in which it assumes non-null value (shouldUseBreakElement on line 103 of InsertLineBreakCommand.cpp) results in null-pointer access.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list