[Webkit-unassigned] [Bug 140887] New: Segmentation fault when click and drag mulitple time in a short time delay

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Jan 26 06:26:10 PST 2015 

https://bugs.webkit.org/show_bug.cgi?id=140887

            Bug ID: 140887
           Summary: Segmentation fault when click and drag mulitple time
                    in a short time delay
    Classification: Unclassified
           Product: WebKit
           Version: 528+ (Nightly build)
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: adrien.schwartzentruber at gmail.com

Hello,

With a empty html page, it's possible to crash the webkit2gtk engine by clicking and drag multiple in a very short timespan. 

Indeed, the WebKitProcess will dead, and the current page will be a blank page. After this behavior, some JS code will not work correctly (a new process webKitProcess is started after few stimulis). 

I will have a look closer to this bug. 

Platform : Arch linux

Call stack : 
Program received signal SIGSEGV, Segmentation fault.
0x00007fcafe99bbc0 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
(gdb) bt
#0  0x00007fcafe99bbc0 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#1  0x00007fcafeb23a1b in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#2  0x00007fcafeb23aaa in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#3  0x00007fcafeb88084 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#4  0x00007fcaff2ac7e6 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#5  0x00007fcaff2ad83c in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#6  0x00007fcaff2bc5c8 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#7  0x00007fcaff2bcb5a in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#8  0x00007fcaff2bd203 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#9  0x00007fcaff2c0041 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#10 0x00007fcafeb07a55 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#11 0x00007fcafeb0d21b in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#12 0x00007fcafebc113b in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#13 0x00007fcafe987e96 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#14 0x00007fcafea844f2 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#15 0x00007fcafe9822e4 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#16 0x00007fcafe982468 in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#17 0x00007fcafff76f9c in ?? () from /usr/lib/libwebkit2gtk-4.0.so.37
#18 0x00007fcafde32e65 in WTF::GMainLoopSource::voidCallback() () from /usr/lib/libjavascriptcoregtk-4.0.so.18
#19 0x00007fcafde2df5a in WTF::GMainLoopSource::voidSourceCallback(WTF::GMainLoopSource*) () from /usr/lib/libjavascriptcoregtk-4.0.so.18
#20 0x00007fcafb74491d in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#21 0x00007fcafb744cf8 in ?? () from /usr/lib/libglib-2.0.so.0
#22 0x00007fcafb745022 in g_main_loop_run () from /usr/lib/libglib-2.0.so.0
#23 0x00007fcafeb93649 in WebProcessMainUnix () from /usr/lib/libwebkit2gtk-4.0.so.37
#24 0x00007fcafe16c040 in __libc_start_main () from /usr/lib/libc.so.6
#25 0x00000000004007a4 in _start ()

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150126/1e973bbc/attachment-0002.html>

More information about the webkit-unassigned mailing list