[Webkit-unassigned] [Bug 220813] New: Null dereference in CompositeEditCommand::cloneParagraphUnderNewElement(): needs to check lastNode parent

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Jan 21 12:31:07 PST 2021 

https://bugs.webkit.org/show_bug.cgi?id=220813

            Bug ID: 220813
           Summary: Null dereference in
                    CompositeEditCommand::cloneParagraphUnderNewElement():
                    needs to check lastNode parent
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Keywords: InRadar
          Severity: Normal
          Priority: P2
         Component: HTML Editing
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: julian_a_gonzalez at apple.com
                CC: rniwa at webkit.org, wenson_hsieh at apple.com

e.g.

frame #0: WebCore`WebCore::Node::parentNode() const+0
frame #1: WebCore`WebCore::CompositeEditCommand::cloneParagraphUnderNewElement(WebCore::Position const&, WebCore::Position const&, WebCore::Node*, WebCore::Element*)+0
frame #2: WebCore`WebCore::CompositeEditCommand::moveParagraphWithClones(WebCore::VisiblePosition const&, WebCore::VisiblePosition const&, WebCore::Element*, WebCore::Node*)+0
frame #3: WebCore`WebCore::IndentOutdentCommand::indentIntoBlockquote(WebCore::Position const&, WebCore::Position const&, WTF::RefPtr<WebCore::Element, WTF::DumbPtrTraits<WebCore::Element> >&)+0
frame #4: WebCore`WebCore::ApplyBlockElementCommand::formatSelection(WebCore::VisiblePosition const&, WebCore::VisiblePosition const&)+0
frame #5: WebCore`WebCore::ApplyBlockElementCommand::doApply()+0
frame #6: WebCore`WebCore::CompositeEditCommand::apply()+0
frame #7: WebCore`WebCore::executeIndent(WebCore::Frame&, WebCore::Event*, WebCore::EditorCommandSource, WTF::String const&)+0
frame #8: WebCore`WebCore::Document::execCommand(WTF::String const&, bool, WTF::String const&)+0

<rdar://problem/66894117>

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210121/d532f4e6/attachment.htm>

More information about the webkit-unassigned mailing list