Bug 133064

Summary: [Mac] Crash during scroll when latched
Product: WebKit Reporter: Brent Fulgham <bfulgham>
Component: WebCore Misc.Assignee: Brent Fulgham <bfulgham>
Status: RESOLVED FIXED    
Severity: Normal CC: ap, bfulgham, simon.fraser, thorton, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch simon.fraser: review+

Brent Fulgham
Reported 2014-05-18 22:38:23 PDT
It's possible to be latched to a DOM element, then attempt a new scroll event where the hit test for the mouse event returns NULL for the target element. When this happens, the NULL element is dereferenced without a NULL check resulting in a crash. This patch corrects this mistake.
Attachments
Patch (1.36 KB, patch)
2014-05-18 22:47 PDT, Brent Fulgham 		simon.fraser: review+
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Brent Fulgham
Comment 1 2014-05-18 22:39:00 PDT
<rdar://problem/16761067>
Brent Fulgham
Comment 2 2014-05-18 22:47:11 PDT
Created attachment 231676 [details] Patch
Brent Fulgham
Comment 3 2014-05-18 22:49:32 PDT
Wow, Simon. That was fast!
Brent Fulgham
Comment 4 2014-05-18 22:51:03 PDT
Committed r169037: <http://trac.webkit.org/changeset/169037>
Note You need to log in before you can comment on or make changes to this bug.