[Webkit-unassigned] [Bug 164864] New: REGRESSION(r208511): ImageDecoders: Crash decoding GIF images since r208511

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Nov 17 05:31:02 PST 2016


https://bugs.webkit.org/show_bug.cgi?id=164864

            Bug ID: 164864
           Summary: REGRESSION(r208511): ImageDecoders: Crash decoding GIF
                    images since r208511
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Local Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Keywords: Gtk
          Severity: Normal
          Priority: P2
         Component: Platform
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: cgarcia at igalia.com
                CC: bugs-noreply at webkitgtk.org, sabouhallawa at apple.com,
                    simon.fraser at apple.com

This happens sometimes since r208511 because the same decoder is decoded by more than one thread at the same time and the decoders are not thread-safe. Several methods in ImageDecoder need to decode partially the image, so it's possible that one method calls frameBufferAtIndex at the same times as createFrameImageAtIndex that now can be called from the image decoder thread.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161117/67530a18/attachment.html>


More information about the webkit-unassigned mailing list