[Webkit-unassigned] [Bug 123270] New: Uninitialized member causes crash when DFG JIT is not enabled.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Oct 24 07:15:51 PDT 2013
https://bugs.webkit.org/show_bug.cgi?id=123270
Summary: Uninitialized member causes crash when DFG JIT is not
enabled.
Product: WebKit
Version: 528+ (Nightly build)
Platform: PC
OS/Version: Unspecified
Status: UNCONFIRMED
Severity: Normal
Priority: P2
Component: JavaScriptCore
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: peavo at outlook.com
The data member sizeOfLastScratchBuffer in the VM class is only initialized if DFG JIT is enabled, even though it's defined regardless.
This causes an early crash on Windows, which doesn't have DFG JIT enabled.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list