[Webkit-unassigned] [Bug 199613] REGRESSION(r244906): Crash in WebCore::positionOffsetValue
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jul 9 07:45:21 PDT 2019
https://bugs.webkit.org/show_bug.cgi?id=199613
zalan <zalan at apple.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #373708|review? |review+
Flags| |
--- Comment #3 from zalan <zalan at apple.com> ---
Comment on attachment 373708
--> https://bugs.webkit.org/attachment.cgi?id=373708
patch
View in context: https://bugs.webkit.org/attachment.cgi?id=373708&action=review
> Source/WebCore/css/CSSComputedStyleDeclaration.cpp:794
> + auto& enclosingClippingBox =
> + box.enclosingClippingBoxForStickyPosition();
why 2 lines.
> Source/WebCore/rendering/RenderBoxModelObject.cpp:448
> + auto* clipLayer = layer()->enclosingOverflowClipLayer(ExcludeSelf);
I guess if sticky does not produce a layer, we have bigger problems than this null deref.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190709/9d0ad83e/attachment-0001.html>
More information about the webkit-unassigned
mailing list