[Webkit-unassigned] [Bug 256470] New: Crash in PDFDocument::sendPDFArrayBuffer

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon May 8 09:35:08 PDT 2023 

https://bugs.webkit.org/show_bug.cgi?id=256470

            Bug ID: 256470
           Summary: Crash in PDFDocument::sendPDFArrayBuffer
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: PDF
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: mcatanzaro at redhat.com
                CC: thorton at apple.com

Created attachment 466282

  --> https://bugs.webkit.org/attachment.cgi?id=466282&action=review

Full backtrace

This null pointer dereference occurred when refreshing a PDF document, but I'm not able to reproduce it:

#0  WebCore::FragmentedSharedBuffer::size (this=0x0)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/platform/SharedBuffer.h:179
#1  WebCore::FragmentedSharedBuffer::tryCreateArrayBuffer (this=0x0)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/platform/SharedBuffer.cpp:198
#2  0x00007f9f9d3b90bb in WebCore::PDFDocument::sendPDFArrayBuffer (this=0x7f9f25110800)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/html/PDFDocument.cpp:210
#3  0x00007f9f9d5fff63 in WebCore::FrameLoader::stop (this=0x7f9f7d0704e0)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/loader/FrameLoader.cpp:587
#4  WebCore::FrameLoader::receivedMainResourceError (this=0x7f9f7d0704e0, error=...)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/loader/FrameLoader.cpp:3343
#5  0x00007f9f9d5d0a92 in WebCore::DocumentLoader::cancelMainResourceLoad (this=this at entry=0x7f9f25c3ec00, 
    resourceError=...) at /home/mcatanzaro/Projects/WebKit/Source/WebCore/loader/DocumentLoader.cpp:2296
#6  0x00007f9f9d5d0433 in WebCore::DocumentLoader::stopLoading (this=0x7f9f25c3ec00)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/loader/DocumentLoader.cpp:396
#7  0x00007f9f9d5fc0c6 in WebCore::FrameLoader::stopAllLoaders (this=0x7f9f7d0704e0, 
    clearProvisionalItem=<optimized out>, 
    stopLoadingPolicy=stopLoadingPolicy at entry=WebCore::StopLoadingPolicy::PreventDuringUnloadEvents)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/loader/FrameLoader.cpp:1907
#8  0x00007f9f9d5fc4de in WebCore::FrameLoader::stopForUserCancel (this=0x7ffc35e65c80, deferCheckLoadComplete=false)
    at /home/mcatanzaro/Projects/WebKit/Source/WebCore/loader/FrameLoader.cpp:1966
#9  0x00007f9f9c2aa941 in WebKit::WebPage::stopLoading (this=0x7f9f7d0ac730)
    at /home/mcatanzaro/Projects/WebKit/Source/WebKit/WebProcess/WebPage/WebPage.cpp:1967
#10 0x00007f9f9bd4d210 in _ZZN3IPC18callMemberFunctionIN6WebKit7WebPageES2_FvvESt5tupleIJEEEEvPT_MT0_T1_OT2_ENKUlDpOT_E_clIJEEEDaSF_ (this=<optimized out>)
    at /home/mcatanzaro/Projects/WebKit/Source/WebKit/Platform/IPC/HandleMessage.h:136

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230508/1e98cce5/attachment.htm>

More information about the webkit-unassigned mailing list