[Webkit-unassigned] [Bug 95859] New: [BlackBerry] JavaScriptVariant can crash when operator= is called with itself
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Sep 5 08:39:15 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=95859
Summary: [BlackBerry] JavaScriptVariant can crash when
operator= is called with itself
Product: WebKit
Version: 528+ (Nightly build)
Platform: Other
OS/Version: Other
Status: UNCONFIRMED
Severity: Normal
Priority: P2
Component: WebKit BlackBerry
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: ben at meyerhome.net
CC: tonikitoo at webkit.org
When JavaScriptVariant contains a string and operator= is called with itself the memory will be free'd in 'this' and then a copy will be attempted from 'that' resulting in a crash.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list