[Webkit-unassigned] [Bug 191805] New: Segfaults on https://terminalizer.com/

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sat Nov 17 04:09:53 PST 2018 

https://bugs.webkit.org/show_bug.cgi?id=191805

            Bug ID: 191805
           Summary: Segfaults on https://terminalizer.com/
           Product: WebKit
           Version: Other
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit Gtk
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: cedric.bellegarde at adishatz.org
                CC: bugs-noreply at webkitgtk.org

When using last WebKitGTK release on ArchLinux and Fedora 29. I guess you should be able to reproduce.

#0  0x00007f29fb3bece9 in  () at /lib64/libwebkit2gtk-4.0.so.37
#1  0x00007f29f5fa25df in _ZN9hb_font_t17get_nominal_glyphEjPj (glyph=0x7ffd2579a6c8, unicode=0, this=<optimized out>) at hb-font-private.hh:211
#2  0x00007f29f5fa25df in decompose_current_character (shortest=true, c=0x7ffd2579a6d0) at hb-ot-shape-normalize.cc:169
#3  0x00007f29f5fa25df in decompose_cluster (always_short_circuit=<optimized out>, might_short_circuit=true, end=<optimized out>, c=0x7ffd2579a6d0) at hb-ot-shape-normalize.cc:271
#4  0x00007f29f5fa25df in _Z22_hb_ot_shape_normalizePK18hb_ot_shape_plan_tP11hb_buffer_tP9hb_font_t (plan=plan at entry=0x560db2f332f0, buffer=buffer at entry=0x560db2d81c00, font=font at entry=0x560db379cd70) at hb-ot-shape-normalize.cc:330
#5  0x00007f29f5f907d6 in hb_ot_substitute_default (c=<synthetic pointer>) at hb-ot-shape.cc:604
#6  0x00007f29f5f907d6 in hb_ot_substitute (c=<synthetic pointer>) at hb-ot-shape.cc:636
#7  0x00007f29f5f907d6 in hb_ot_shape_internal (c=<synthetic pointer>) at hb-ot-shape.cc:870
#8  0x00007f29f5f907d6 in _hb_ot_shape(hb_shape_plan_t*, hb_font_t*, hb_buffer_t*, hb_feature_t const*, unsigned int) (shape_plan=shape_plan at entry=0x560db36f3250, font=font at entry=0x560db379cd70, buffer=buffer at entry=0x560db2d81c00, features=features at entry=0x7ffd2579a990, num_features=num_features at entry=1) at hb-ot-shape.cc:898
#9  0x00007f29f5f551ff in hb_shape_plan_execute(hb_shape_plan_t*, hb_font_t*, hb_buffer_t*, hb_feature_t const*, unsigned int) (shape_plan=shape_plan at entry=0x560db36f3250, font=font at entry=0x560db379cd70, buffer=buffer at entry=0x560db2d81c00, features=features at entry=0x7ffd2579a990, num_features=num_features at entry=1) at hb-shaper-list.hh:43
#10 0x00007f29f5f5478a in hb_shape_full(hb_font_t*, hb_buffer_t*, hb_feature_t const*, unsigned int, char const* const*) (font=0x560db379cd70, buffer=0x560db2d81c00, features=0x7ffd2579a990, num_features=1, shaper_list=<optimized out>) at hb-shape.cc:137
#11 0x00007f29fb3bca0d in  () at /lib64/libwebkit2gtk-4.0.so.37
#12 0x00007f29fae2b338 in  () at /lib64/libwebkit2gtk-4.0.so.37
#13 0x00007f29fae2d269 in  () at /lib64/libwebkit2gtk-4.0.so.37
#14 0x00007f29fae438a8 in  () at /lib64/libwebkit2gtk-4.0.so.37
#15 0x00007f29fae43f45 in  () at /lib64/libwebkit2gtk-4.0.so.37
#16 0x00007f29fae63065 in  () at /lib64/libwebkit2gtk-4.0.so.37
#17 0x00007f29fab249e9 in  () at /lib64/libwebkit2gtk-4.0.so.37
#18 0x00007f29fab24da2 in  () at /lib64/libwebkit2gtk-4.0.so.37
#19 0x00007f29fb485012 in  () at /lib64/libwebkit2gtk-4.0.so.37
#20 0x00007f2997fff177 in  ()
#21 0x00007ffd257ae6a0 in  ()
#22 0x00007f29f8c33172 in  () at /lib64/libjavascriptcoregtk-4.0.so.18
#23 0x0000000000000000 in  ()

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20181117/3027da25/attachment.html>

More information about the webkit-unassigned mailing list