Bug 137642

Summary:

WTFCrashWithSecurityImplication under SpeculativeJIT::compile() when loading a page from theblaze.com

Product:

WebKit

Reporter:

Jim Oase <jimoase>

Component:

JavaScriptCore

Assignee:

Mark Lam <mark.lam>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

fpizlo, ggaren, mark.lam, mhahnenb, mmirman, msaboff, oliver, webkit-bug-importer

Priority:

Keywords:

InRadar

Version:

528+ (Nightly build)

Hardware:

Mac (Intel)

OS:

OS X 10.9

URL:

http://www.theblaze.com/stories/2014/10/06/think-you-had-a-long-commute-today-check-out-this-interactive-map-to-see-who-might-have-fared-worse/

Attachments:

Description	Flags
the patch.	fpizlo: review+

Description Jim Oase 2014-10-11 19:04:18 PDT

This website http://www.theblaze.com/stories/2014/10/06/think-you-had-a-long-commute-today-check-out-this-interactive-map-to-see-who-might-have-fared-worse/

 will crash any webkit nightly build for the last month immediately every time its loaded.

Comment 1 Alexey Proskuryakov 2014-10-13 23:07:05 PDT

rdar://problem/18645137

Comment 2 Mark Lam 2014-11-19 21:07:24 PST

Created attachment 241924 [details]
the patch.

Comment 3 Mark Lam 2014-11-20 09:43:23 PST

Thanks for the review.  Landed in r176399: <http://trac.webkit.org/r176399>.