[Webkit-unassigned] [Bug 111179] [Cairo] Surface pointer passed to asNewNativeImage() might be freed.

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Apr 10 14:52:09 PDT 2014


https://bugs.webkit.org/show_bug.cgi?id=111179





--- Comment #23 from Ed Catmur <ed at catmur.co.uk>  2014-04-10 14:52:28 PST ---
(In reply to comment #22)
> I cannot reproduce just by viewing the page in MiniBrowser. Do I need a particular port or version of Cairo to see the crash?

Shouldn't think so - the crash occurs when Cairo reads from freed memory, so it won't make any difference what the version of Cairo is.

It's more likely to depend on what allocator you're using - it might help to switch to the system allocator (#define USE_SYSTEM_MALLOC 1). You also need to give the allocator a chance to return pages to the OS; either that or switch to an allocator that poisons freed memory.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list