[Webkit-unassigned] [Bug 149957] [Win] Null pointer crash.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Oct 9 09:16:06 PDT 2015
https://bugs.webkit.org/show_bug.cgi?id=149957
Geoffrey Garen <ggaren at apple.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #262776|review? |review-
Flags| |
--- Comment #3 from Geoffrey Garen <ggaren at apple.com> ---
Comment on attachment 262776
--> https://bugs.webkit.org/attachment.cgi?id=262776
Patch
While this might fix the crash, I think it's the wrong fix.
A cell with a null structureID has been garbage collected. You're lucky if you find the null structureID -- that happens soon after sweeping. If you're unlucky, you'll just get garbage memory, or a crash.
We need to investigate how cell got garbage collected in the first place.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20151009/6a9ba97e/attachment.html>
More information about the webkit-unassigned
mailing list