[Webkit-unassigned] [Bug 117815] Fix TextTrackCue::cueIndex() to handle the null case of TextTrack::cues(() properly
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Jul 1 23:50:06 PDT 2013
https://bugs.webkit.org/show_bug.cgi?id=117815
--- Comment #10 from Jon Lee <jonlee at apple.com> 2013-07-01 23:52:04 PST ---
(In reply to comment #9)
> (In reply to comment #8)
> > Consider merging: https://src.chromium.org/viewvc/blink?revision=153206&view=revision
>
> Could there ever be a case in which tracks() is null?
According to that change list:
However, per HTML rules, a track object returns a non-NULL
cue list object only if cues haven't been disabled. The
problem is that in the case for an inband text track, the
cues are disabled by default, and so the track object
returns NULL as the value of the cue list pointer. As
currently implemented, the text track cue object assumes
that the track's cue list is always non-NULL, but this
crashes the browser when the pointer value is dereferenced
to get the cue index.
Need to verify this is the case; if so, we should probably file a new bug.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list