[Webkit-unassigned] [Bug 56180] [GTK] JSC crashes in 32bit Release bots after r80743
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Mar 18 15:02:43 PDT 2011
https://bugs.webkit.org/show_bug.cgi?id=56180
--- Comment #8 from Geoffrey Garen <ggaren at apple.com> 2011-03-18 15:02:43 PST ---
I think the bug here is that m_globalScopeChain has been recycled:
1. Recycle m_globalScopeChain.
2. Run ~JSGlobalObject::JSGlobalObject.
3. Profiler::stopProfiling calls exec->lexicalGlobalObject(), which relies on m_globalScopeChain.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list