[Webkit-unassigned] [Bug 193664] [WinCairo][WebKitTestRunner] Null dereference of GraphicsContext::m_data in GraphicsContext::releaseWindowsContext
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jan 22 02:19:37 PST 2019
https://bugs.webkit.org/show_bug.cgi?id=193664
--- Comment #3 from Fujii Hironori <Hironori.Fujii at sony.com> ---
In RenderThemeWin::paintMeter, completedRect has zero width.
> completedRect {m_location={m_x=8 m_y=7 } m_size={m_width=0 m_height=16 } } WebCore::IntRect
Then, GraphicsContext::getWindowsContext returned 0.
https://github.com/WebKit/webkit/blob/5f7dcb377532103d4561192cd2197de0bd78c372/Source/WebCore/platform/graphics/win/GraphicsContextWin.cpp#L110
Then, LocalWindowsContext::~LocalWindowsContext tried to release zero HDC, and crashed.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190122/ba312c4e/attachment.html>
More information about the webkit-unassigned
mailing list