Bug 15170

Summary: Some framed DHTML pages in LexisNexis (AU) cause repeatable crashes
Product: WebKit Reporter: Mark Aufflick <mark>
Component: Page LoadingAssignee: Nobody <webkit-unassigned>
Status: RESOLVED DUPLICATE    
Severity: Normal CC: mitz, mrowe
Priority: P2    
Version: 523.x (Safari 3)   
Hardware: Mac (PowerPC)   
OS: OS X 10.4   

Description Mark Aufflick 2007-09-10 05:09:43 PDT
It's a commercial legal service, so you can't access it for free unless you have a license or (like me) are a legal student.

I crash nightly webkit (using Safari 3 beta) every time by accessing "Criminal Practice and Procedure New South Wales" fwiw.

I have pasted the crash report below.

I have also made a zipfile of the offending html/javascript by accessing the page in firefox. I won't upload it since it contains copyright data, but I'm happy to send it to any developer who wants to investigate the bug.

If I get time after mid-semester tests to attempt to reduce the code I will.

Date/Time:      2007-09-10 21:58:07.564 +1000
OS Version:     10.4.10 (Build 8R218)
Report Version: 4

Command: Safari
Path:    /Applications/Safari.app/Contents/MacOS/Safari
Parent:  WindowServer [77]

Version: r25464 (25464)

PID:    6758
Thread: 0

Exception:  EXC_BAD_ACCESS (0x0001)
Codes:      KERN_PROTECTION_FAILURE (0x0002) at 0x000004c4

Thread 0 Crashed:
0   com.apple.WebCore        	0x013b9e94 WebCore::DocumentLoader::isLoadingMultipartContent() const + 4
1   com.apple.WebCore        	0x0124fc1c WebCore::ImageTokenizer::finish() + 124
2   com.apple.WebCore        	0x013b859c WebCore::FrameLoader::endIfNotLoadingMainResource() + 124
3   com.apple.WebCore        	0x010cede4 WebCore::Document::close() + 52
4   com.apple.WebCore        	0x0124d1dc WebCore::JSHTMLDocumentPrototypeFunction::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 268
5   com.apple.JavaScriptCore 	0x004b99a0 KJS::FunctionCallDotNode::evaluate(KJS::ExecState*) + 832
6   com.apple.JavaScriptCore 	0x004c6e94 KJS::ExprStatementNode::execute(KJS::ExecState*) + 100
7   com.apple.JavaScriptCore 	0x004c3f10 KJS::SourceElementsNode::execute(KJS::ExecState*) + 368
8   com.apple.JavaScriptCore 	0x004c7058 KJS::BlockNode::execute(KJS::ExecState*) + 136
9   com.apple.JavaScriptCore 	0x004c6db8 KJS::IfNode::execute(KJS::ExecState*) + 344
10  com.apple.JavaScriptCore 	0x004c3f10 KJS::SourceElementsNode::execute(KJS::ExecState*) + 368
11  com.apple.JavaScriptCore 	0x004c7058 KJS::BlockNode::execute(KJS::ExecState*) + 136
12  com.apple.JavaScriptCore 	0x004c7ab8 KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 56
13  com.apple.JavaScriptCore 	0x004c7e20 KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 608
14  com.apple.JavaScriptCore 	0x004a31d8 KJS::FunctionCallResolveNode::evaluate(KJS::ExecState*) + 792
15  com.apple.JavaScriptCore 	0x004c6e94 KJS::ExprStatementNode::execute(KJS::ExecState*) + 100
16  com.apple.JavaScriptCore 	0x004c3e5c KJS::SourceElementsNode::execute(KJS::ExecState*) + 188
17  com.apple.JavaScriptCore 	0x004c7058 KJS::BlockNode::execute(KJS::ExecState*) + 136
18  com.apple.JavaScriptCore 	0x004c7ab8 KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 56
19  com.apple.JavaScriptCore 	0x004c7e20 KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 608
20  com.apple.JavaScriptCore 	0x004998d4 KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 116
21  com.apple.WebCore        	0x01221a0c WebCore::JSAbstractEventListener::handleEvent(WebCore::Event*, bool) + 556
22  com.apple.WebCore        	0x011eef0c WebCore::EventTargetNode::handleLocalEvents(WebCore::Event*, bool) + 252
23  com.apple.WebCore        	0x011ef9d4 WebCore::EventTargetNode::dispatchGenericEvent(WTF::PassRefPtr<WebCore::Event>, int&, bool) + 580
24  com.apple.WebCore        	0x011efebc WebCore::EventTargetNode::dispatchWindowEvent(WebCore::AtomicString const&, bool, bool) + 444
25  com.apple.WebCore        	0x010cebb4 WebCore::Document::implicitClose() + 468
26  com.apple.WebCore        	0x013a3d4c WebCore::FrameLoader::checkCallImplicitClose() + 348
27  com.apple.WebCore        	0x013b2f84 WebCore::FrameLoader::checkCompleted() + 228
28  com.apple.WebCore        	0x010ebdbc WebCore::Loader::didFinishLoading(WebCore::SubresourceLoader*) + 460
29  com.apple.WebCore        	0x013c4ad0 WebCore::SubresourceLoader::didFinishLoading() + 96
30  com.apple.WebCore        	0x01394c74 -[WebCoreResourceHandleAsDelegate connectionDidFinishLoading:] + 100
31  com.apple.Foundation     	0x92c1389c -[NSURLConnection(NSURLConnectionInternal) _sendDidFinishLoadingCallback] + 188
32  com.apple.Foundation     	0x92c11b08 -[NSURLConnection(NSURLConnectionInternal) _sendCallbacks] + 556
33  com.apple.Foundation     	0x92c11860 _sendCallbacks + 156
34  com.apple.CoreFoundation 	0x907de4fc __CFRunLoopDoSources0 + 384
35  com.apple.CoreFoundation 	0x907dda2c __CFRunLoopRun + 452
36  com.apple.CoreFoundation 	0x907dd4ac CFRunLoopRunSpecific + 268
37  com.apple.HIToolbox      	0x93298b20 RunCurrentEventLoopInMode + 264
38  com.apple.HIToolbox      	0x932981b4 ReceiveNextEventCommon + 380
39  com.apple.HIToolbox      	0x93298020 BlockUntilNextEventMatchingListInMode + 96
40  com.apple.AppKit         	0x9379eae4 _DPSNextEvent + 384
41  com.apple.AppKit         	0x9379e7a8 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 116
42  com.apple.Safari         	0x00006770 0x1000 + 22384
43  com.apple.AppKit         	0x9379acec -[NSApplication run] + 472
44  com.apple.AppKit         	0x9388b87c NSApplicationMain + 452
45  com.apple.Safari         	0x0000244c 0x1000 + 5196
46  com.apple.Safari         	0x0004f1b0 0x1000 + 319920

Thread 1:
0   libSystem.B.dylib        	0x9002c3c8 semaphore_wait_signal_trap + 8
1   libSystem.B.dylib        	0x90030eac pthread_cond_wait + 480
2   com.apple.WebCore        	0x012c6e30 WebCore::IconDatabase::syncThreadMainLoop() + 336
3   com.apple.WebCore        	0x012c6ff8 WebCore::IconDatabase::iconDatabaseSyncThread() + 408
4   libSystem.B.dylib        	0x9002bd08 _pthread_body + 96

Thread 2:
0   libSystem.B.dylib        	0x9000b348 mach_msg_trap + 8
1   libSystem.B.dylib        	0x9000b29c mach_msg + 60
2   com.apple.CoreFoundation 	0x907ddba8 __CFRunLoopRun + 832
3   com.apple.CoreFoundation 	0x907dd4ac CFRunLoopRunSpecific + 268
4   com.apple.Foundation     	0x92c097e8 +[NSURLCache _diskCacheSyncLoop:] + 152
5   com.apple.Foundation     	0x92be11a0 forkThreadForFunction + 108
6   libSystem.B.dylib        	0x9002bd08 _pthread_body + 96

Thread 3:
0   libSystem.B.dylib        	0x9000b348 mach_msg_trap + 8
1   libSystem.B.dylib        	0x9000b29c mach_msg + 60
2   com.apple.CoreFoundation 	0x907ddba8 __CFRunLoopRun + 832
3   com.apple.CoreFoundation 	0x907dd4ac CFRunLoopRunSpecific + 268
4   com.apple.Foundation     	0x92c086a8 +[NSURLConnection(NSURLConnectionInternal) _resourceLoadLoop:] + 264
5   com.apple.Foundation     	0x92be11a0 forkThreadForFunction + 108
6   libSystem.B.dylib        	0x9002bd08 _pthread_body + 96

Thread 4:
0   libSystem.B.dylib        	0x9002c3c8 semaphore_wait_signal_trap + 8
1   libSystem.B.dylib        	0x90030eac pthread_cond_wait + 480
2   com.apple.Foundation     	0x92be830c -[NSConditionLock lockWhenCondition:] + 68
3   com.apple.Syndication    	0x9bcf042c -[AsyncDB _run:] + 192
4   com.apple.Foundation     	0x92be11a0 forkThreadForFunction + 108
5   libSystem.B.dylib        	0x9002bd08 _pthread_body + 96

Thread 5:
0   libSystem.B.dylib        	0x9001f88c select + 12
1   com.apple.CoreFoundation 	0x907f0434 __CFSocketManager + 472
2   libSystem.B.dylib        	0x9002bd08 _pthread_body + 96

Thread 6:
0   libSystem.B.dylib        	0x9002c3c8 semaphore_wait_signal_trap + 8
1   libSystem.B.dylib        	0x90030eac pthread_cond_wait + 480
2   com.apple.Foundation     	0x92be830c -[NSConditionLock lockWhenCondition:] + 68
3   com.apple.AppKit         	0x9383b708 -[NSUIHeartBeat _heartBeatThread:] + 324
4   com.apple.Foundation     	0x92be11a0 forkThreadForFunction + 108
5   libSystem.B.dylib        	0x9002bd08 _pthread_body + 96

Thread 0 crashed with PPC Thread State 64:
  srr0: 0x00000000013b9e94 srr1: 0x000000000200f030                        vrsave: 0x00000000fff00000
    cr: 0x24044244          xer: 0x0000000000000002   lr: 0x000000000124fc1c  ctr: 0x000000000124fba0
    r0: 0x000000000124fbfc   r1: 0x00000000bfffda30   r2: 0x0000000000000000   r3: 0x000000000796fa00
    r4: 0x000000000796fa00   r5: 0x0000000000000000   r6: 0x0000000000000001   r7: 0x0000000007e43254
    r8: 0x000000000000000f   r9: 0x0000000007cedf90  r10: 0x000000000151de38  r11: 0x0000000044044244
   r12: 0x000000000124fba0  r13: 0x0000000000000000  r14: 0x0000000000000001  r15: 0x0000000000000000
   r16: 0x0000000000502edc  r17: 0x0000000000512edc  r18: 0x0000000000512edc  r19: 0x0000000000512edc
   r20: 0x0000000000512edc  r21: 0x00000000bfffdf80  r22: 0x00000000bfffe270  r23: 0x0000000000509670
   r24: 0x000000000692f620  r25: 0x000000000783ee40  r26: 0x0000000007bd56c0  r27: 0x0000000007cedf90
   r28: 0x00000000bfffdc08  r29: 0x0000000007476a10  r30: 0x0000000007cedf90  r31: 0x00000000013b8534

Binary Images Description:
    0x1000 -   0x123fff com.apple.Safari 3.0.3 (522.12.1)	/Applications/Safari.app/Contents/MacOS/Safari
  0x158000 -   0x159fff WebKitNightlyEnabler.dylib 	/Applications/WebKit.app/Contents/Resources/WebKitNightlyEnabler.dylib
  0x305000 -   0x3bffff com.apple.WebKit 523.6+	/Applications/WebKit.app/Contents/Resources/WebKit.framework/Versions/A/WebKit
  0x43e000 -   0x4f2fff com.apple.JavaScriptCore 523.6+	/Applications/WebKit.app/Contents/Resources/JavaScriptCore.framework/Versions/A/JavaScriptCore
  0x715000 -   0x717fff net.culater.SIMBL 0.8 (8)	/Library/InputManagers/SIMBL/SIMBL.bundle/Contents/MacOS/SIMBL
 0x1008000 -  0x157efff com.apple.WebCore 523.6+	/Applications/WebKit.app/Contents/Resources/WebCore.framework/Versions/A/WebCore
 0x1a49000 -  0x1a8bfff jp.hetima.SafariStand 3.0a2 (141)	/Users/aufflick/Library/Application Support/SIMBL/Plugins/SafariStand.bundle/Contents/MacOS/SafariStand
 0x1abb000 -  0x1abdfff org.ianhenderson.megazoomer ??? (0.4.1)	/Users/aufflick/Library/Application Support/SIMBL/Plugins/megazoomer.bundle/Contents/MacOS/megazoomer
 0xa54b000 -  0xa85ffff com.macromedia.Flash Player.plugin 9.0.28 (1.0.4f22)	/Library/Internet Plug-Ins/Flash Player.plugin/Contents/MacOS/Flash Player
 0xb99c000 -  0xba91fff com.elgato.mpegsupport EyeTV MPEG Support 1.0.4 (build 35) (1.0.4)	/Library/QuickTime/EyeTV MPEG Support.component/Contents/MacOS/EyeTV MPEG Support
0x32000000 - 0x32042fff isao.sonobe.OgreKit ??? (2.1.0)	/Users/aufflick/Library/Application Support/SIMBL/Plugins/SafariStand.bundle/Contents/Resources/OgreKit.framework/OgreKit
0x8fe00000 - 0x8fe52fff dyld 46.12	/usr/lib/dyld
0x90000000 - 0x901bcfff libSystem.B.dylib 	/usr/lib/libSystem.B.dylib
0x90214000 - 0x90219fff libmathCommon.A.dylib 	/usr/lib/system/libmathCommon.A.dylib
0x9021b000 - 0x90268fff com.apple.CoreText 1.0.3 (???)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreText.framework/Versions/A/CoreText
0x90293000 - 0x90344fff ATS 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/ATS
0x90373000 - 0x9072efff com.apple.CoreGraphics 1.258.75 (???)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/CoreGraphics
0x907bb000 - 0x90894fff com.apple.CoreFoundation 6.4.7 (368.28)	/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
0x908dd000 - 0x908ddfff com.apple.CoreServices 10.4 (???)	/System/Library/Frameworks/CoreServices.framework/Versions/A/CoreServices
0x908df000 - 0x909e1fff libicucore.A.dylib 	/usr/lib/libicucore.A.dylib
0x90a3b000 - 0x90abffff libobjc.A.dylib 	/usr/lib/libobjc.A.dylib
0x90ae9000 - 0x90b5bfff com.apple.framework.IOKit 1.4 (???)	/System/Library/Frameworks/IOKit.framework/Versions/A/IOKit
0x90b71000 - 0x90b83fff libauto.dylib 	/usr/lib/libauto.dylib
0x90b8a000 - 0x90e61fff com.apple.CoreServices.CarbonCore 681.15	/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonCore.framework/Versions/A/CarbonCore
0x90ec7000 - 0x90f47fff com.apple.CoreServices.OSServices 4.1	/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/OSServices.framework/Versions/A/OSServices
0x90f91000 - 0x90fd3fff com.apple.CFNetwork 4.0 (129.21)	/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CFNetwork.framework/Versions/A/CFNetwork
0x90fe8000 - 0x91000fff com.apple.WebServices 1.1.2 (1.1.0)	/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/WebServicesCore.framework/Versions/A/WebServicesCore
0x91010000 - 0x91091fff com.apple.SearchKit 1.0.5	/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/SearchKit.framework/Versions/A/SearchKit
0x910d7000 - 0x91100fff com.apple.Metadata 10.4.4 (121.36)	/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Metadata.framework/Versions/A/Metadata
0x91111000 - 0x9111ffff libz.1.dylib 	/usr/lib/libz.1.dylib
0x91122000 - 0x912ddfff com.apple.security 4.6 (29770)	/System/Library/Frameworks/Security.framework/Versions/A/Security
0x913dc000 - 0x913e5fff com.apple.DiskArbitration 2.1	/System/Library/Frameworks/DiskArbitration.framework/Versions/A/DiskArbitration
0x913ec000 - 0x913f4fff libbsm.dylib 	/usr/lib/libbsm.dylib
0x913f8000 - 0x91420fff com.apple.SystemConfiguration 1.8.3	/System/Library/Frameworks/SystemConfiguration.framework/Versions/A/SystemConfiguration
0x91433000 - 0x9143efff libgcc_s.1.dylib 	/usr/lib/libgcc_s.1.dylib
0x91443000 - 0x914befff com.apple.audio.CoreAudio 3.0.4	/System/Library/Frameworks/CoreAudio.framework/Versions/A/CoreAudio
0x914fb000 - 0x914fbfff com.apple.ApplicationServices 10.4 (???)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/ApplicationServices
0x914fd000 - 0x91535fff com.apple.AE 1.5 (297)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/AE.framework/Versions/A/AE
0x91550000 - 0x91622fff com.apple.ColorSync 4.4.9	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ColorSync.framework/Versions/A/ColorSync
0x91675000 - 0x91706fff com.apple.print.framework.PrintCore 4.6 (177.13)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/PrintCore.framework/Versions/A/PrintCore
0x9174d000 - 0x91804fff com.apple.QD 3.10.24 (???)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/QD.framework/Versions/A/QD
0x91841000 - 0x9189ffff com.apple.HIServices 1.5.3 (???)	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/HIServices.framework/Versions/A/HIServices
0x918ce000 - 0x918effff com.apple.LangAnalysis 1.6.1	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/LangAnalysis.framework/Versions/A/LangAnalysis
0x91903000 - 0x91928fff com.apple.FindByContent 1.5	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/FindByContent.framework/Versions/A/FindByContent
0x9193b000 - 0x9197dfff com.apple.LaunchServices 182	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/LaunchServices.framework/Versions/A/LaunchServices
0x91999000 - 0x919adfff com.apple.speech.synthesis.framework 3.3	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/SpeechSynthesis.framework/Versions/A/SpeechSynthesis
0x919bb000 - 0x91a01fff com.apple.ImageIO.framework 1.5.5	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/ImageIO
0x91a18000 - 0x91adffff libcrypto.0.9.7.dylib 	/usr/lib/libcrypto.0.9.7.dylib
0x91b2d000 - 0x91b42fff libcups.2.dylib 	/usr/lib/libcups.2.dylib
0x91b47000 - 0x91b65fff libJPEG.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libJPEG.dylib
0x91b6b000 - 0x91c22fff libJP2.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libJP2.dylib
0x91c71000 - 0x91c75fff libGIF.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libGIF.dylib
0x91c77000 - 0x91cdffff libRaw.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libRaw.dylib
0x91ce4000 - 0x91d21fff libTIFF.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libTIFF.dylib
0x91d28000 - 0x91d41fff libPng.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libPng.dylib
0x91d46000 - 0x91d49fff libRadiance.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libRadiance.dylib
0x91d4b000 - 0x91e29fff libxml2.2.dylib 	/usr/lib/libxml2.2.dylib
0x91e49000 - 0x91e49fff com.apple.Accelerate 1.2.2 (Accelerate 1.2.2)	/System/Library/Frameworks/Accelerate.framework/Versions/A/Accelerate
0x91e4b000 - 0x91f30fff com.apple.vImage 2.4	/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vImage.framework/Versions/A/vImage
0x91f38000 - 0x91f57fff com.apple.Accelerate.vecLib 3.2.2 (vecLib 3.2.2)	/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/vecLib
0x91fc3000 - 0x92031fff libvMisc.dylib 	/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libvMisc.dylib
0x9203c000 - 0x920d1fff libvDSP.dylib 	/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libvDSP.dylib
0x920eb000 - 0x92673fff libBLAS.dylib 	/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libBLAS.dylib
0x926a6000 - 0x929d1fff libLAPACK.dylib 	/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libLAPACK.dylib
0x92a01000 - 0x92aeffff libiconv.2.dylib 	/usr/lib/libiconv.2.dylib
0x92af2000 - 0x92b7afff com.apple.DesktopServices 1.3.6	/System/Library/PrivateFrameworks/DesktopServicesPriv.framework/Versions/A/DesktopServicesPriv
0x92bbb000 - 0x92de6fff com.apple.Foundation 6.4.8 (567.29)	/System/Library/Frameworks/Foundation.framework/Versions/C/Foundation
0x92f13000 - 0x92f31fff libGL.dylib 	/System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGL.dylib
0x92f3c000 - 0x92f96fff libGLU.dylib 	/System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLU.dylib
0x92fb4000 - 0x92fb4fff com.apple.Carbon 10.4 (???)	/System/Library/Frameworks/Carbon.framework/Versions/A/Carbon
0x92fb6000 - 0x92fcafff com.apple.ImageCapture 3.0	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/ImageCapture.framework/Versions/A/ImageCapture
0x92fe2000 - 0x92ff2fff com.apple.speech.recognition.framework 3.4	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SpeechRecognition.framework/Versions/A/SpeechRecognition
0x92ffe000 - 0x93013fff com.apple.securityhi 2.0 (203)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SecurityHI.framework/Versions/A/SecurityHI
0x93025000 - 0x930acfff com.apple.ink.framework 101.2 (69)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Ink.framework/Versions/A/Ink
0x930c0000 - 0x930cbfff com.apple.help 1.0.3 (32)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Help.framework/Versions/A/Help
0x930d5000 - 0x93102fff com.apple.openscripting 1.2.5 (???)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/OpenScripting.framework/Versions/A/OpenScripting
0x9311c000 - 0x9312bfff com.apple.print.framework.Print 5.2 (192.4)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Print.framework/Versions/A/Print
0x93137000 - 0x9319dfff com.apple.htmlrendering 1.1.2	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HTMLRendering.framework/Versions/A/HTMLRendering
0x931ce000 - 0x9321dfff com.apple.NavigationServices 3.4.4 (3.4.3)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/NavigationServices.framework/Versions/A/NavigationServices
0x9324b000 - 0x93268fff com.apple.audio.SoundManager 3.9	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/CarbonSound.framework/Versions/A/CarbonSound
0x9327a000 - 0x93287fff com.apple.CommonPanels 1.2.2 (73)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/CommonPanels.framework/Versions/A/CommonPanels
0x93290000 - 0x9359efff com.apple.HIToolbox 1.4.9 (???)	/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.framework/Versions/A/HIToolbox
0x936ee000 - 0x936fafff com.apple.opengl 1.4.7	/System/Library/Frameworks/OpenGL.framework/Versions/A/OpenGL
0x936ff000 - 0x9371ffff com.apple.DirectoryService.Framework 3.1	/System/Library/Frameworks/DirectoryService.framework/Versions/A/DirectoryService
0x93794000 - 0x93794fff com.apple.Cocoa 6.4 (???)	/System/Library/Frameworks/Cocoa.framework/Versions/A/Cocoa
0x93796000 - 0x93dc9fff com.apple.AppKit 6.4.7 (824.41)	/System/Library/Frameworks/AppKit.framework/Versions/C/AppKit
0x94156000 - 0x941c8fff com.apple.CoreData 91 (92.1)	/System/Library/Frameworks/CoreData.framework/Versions/A/CoreData
0x94201000 - 0x942c5fff com.apple.audio.toolbox.AudioToolbox 1.4.5	/System/Library/Frameworks/AudioToolbox.framework/Versions/A/AudioToolbox
0x94317000 - 0x94317fff com.apple.audio.units.AudioUnit 1.4	/System/Library/Frameworks/AudioUnit.framework/Versions/A/AudioUnit
0x94319000 - 0x944d9fff com.apple.QuartzCore 1.4.12	/System/Library/Frameworks/QuartzCore.framework/Versions/A/QuartzCore
0x94523000 - 0x94560fff libsqlite3.0.dylib 	/usr/lib/libsqlite3.0.dylib
0x94568000 - 0x945b8fff libGLImage.dylib 	/System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLImage.dylib
0x945c1000 - 0x945dbfff com.apple.CoreVideo 1.4.1	/System/Library/Frameworks/CoreVideo.framework/Versions/A/CoreVideo
0x945eb000 - 0x9460bfff libmx.A.dylib 	/usr/lib/libmx.A.dylib
0x94699000 - 0x946dbfff com.apple.vmutils 4.0.2 (93.1)	/System/Library/PrivateFrameworks/vmutils.framework/Versions/A/vmutils
0x9471f000 - 0x9473bfff com.apple.securityfoundation 2.2 (27710)	/System/Library/Frameworks/SecurityFoundation.framework/Versions/A/SecurityFoundation
0x9474f000 - 0x94793fff com.apple.securityinterface 2.2 (27692)	/System/Library/Frameworks/SecurityInterface.framework/Versions/A/SecurityInterface
0x947b7000 - 0x947c6fff libCGATS.A.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCGATS.A.dylib
0x947ce000 - 0x947dbfff libCSync.A.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCSync.A.dylib
0x94821000 - 0x9483afff libRIP.A.dylib 	/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libRIP.A.dylib
0x94841000 - 0x94b60fff com.apple.QuickTime 7.2.0	/System/Library/Frameworks/QuickTime.framework/Versions/A/QuickTime
0x94c44000 - 0x94cb5fff libstdc++.6.dylib 	/usr/lib/libstdc++.6.dylib
0x94e2a000 - 0x94f5afff com.apple.AddressBook.framework 4.0.5 (487)	/System/Library/Frameworks/AddressBook.framework/Versions/A/AddressBook
0x94fec000 - 0x94ffbfff com.apple.DSObjCWrappers.Framework 1.1	/System/Library/PrivateFrameworks/DSObjCWrappers.framework/Versions/A/DSObjCWrappers
0x95003000 - 0x95030fff com.apple.LDAPFramework 1.4.1 (69.0.1)	/System/Library/Frameworks/LDAP.framework/Versions/A/LDAP
0x95037000 - 0x95047fff libsasl2.2.dylib 	/usr/lib/libsasl2.2.dylib
0x9504b000 - 0x9507afff libssl.0.9.7.dylib 	/usr/lib/libssl.0.9.7.dylib
0x9508a000 - 0x950a7fff libresolv.9.dylib 	/usr/lib/libresolv.9.dylib
0x965b3000 - 0x965c0fff com.apple.agl 2.5.6 (AGL-2.5.6)	/System/Library/Frameworks/AGL.framework/Versions/A/AGL
0x965d8000 - 0x96601fff libxslt.1.dylib 	/usr/lib/libxslt.1.dylib
0x969ad000 - 0x969dffff com.apple.PDFKit 1.0.4	/System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/PDFKit.framework/Versions/A/PDFKit
0x96f23000 - 0x96f24fff libCyrillicConverter.dylib 	/System/Library/CoreServices/Encodings/libCyrillicConverter.dylib
0x96f26000 - 0x96f27fff libGreekConverter.dylib 	/System/Library/CoreServices/Encodings/libGreekConverter.dylib
0x96f2c000 - 0x96f42fff libJapaneseConverter.dylib 	/System/Library/CoreServices/Encodings/libJapaneseConverter.dylib
0x96f44000 - 0x96f64fff libKoreanConverter.dylib 	/System/Library/CoreServices/Encodings/libKoreanConverter.dylib
0x96f72000 - 0x96f80fff libSimplifiedChineseConverter.dylib 	/System/Library/CoreServices/Encodings/libSimplifiedChineseConverter.dylib
0x96f85000 - 0x96f86fff libThaiConverter.dylib 	/System/Library/CoreServices/Encodings/libThaiConverter.dylib
0x96f88000 - 0x96f9bfff libTraditionalChineseConverter.dylib 	/System/Library/CoreServices/Encodings/libTraditionalChineseConverter.dylib
0x98c01000 - 0x98cd2fff com.apple.QuartzComposer 1.2.6 (32.25)	/System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/QuartzComposer.framework/Versions/A/QuartzComposer
0x98d4f000 - 0x98d4ffff com.apple.quartzframework 1.0	/System/Library/Frameworks/Quartz.framework/Versions/A/Quartz
0x9bced000 - 0x9bd23fff com.apple.Syndication 1.0.6 (54)	/System/Library/PrivateFrameworks/Syndication.framework/Versions/A/Syndication
0x9bd40000 - 0x9bd52fff com.apple.SyndicationUI 1.0.6 (54)	/System/Library/PrivateFrameworks/SyndicationUI.framework/Versions/A/SyndicationUI

Model: PowerBook6,8, BootROM 4.9.0f0, 1 processors, PowerPC G4  (1.5), 1.5 GHz, 1.25 GB
Graphics: GeForce FX Go5200, GeForce FX Go5200, AGP, 64 MB
Memory Module: DIMM0/BUILT-IN, 256 MB, built-in, built-in
Memory Module: DIMM1/J31, 1 GB, DDR SDRAM, PC2700U-25330
Comment 1 Mark Rowe (bdash) 2007-09-10 05:58:55 PDT
Mark, it would be great if you could also file this bug report with Apple at <http://bugreport.apple.com/>, and attach the zip file to that bug report so Apple engineers can investigate.  Alternatively you could email me the zip file and I'll take care of the bug report.

Just to be clear, the crash is reproducible when using the files saved from Firefox?
Comment 2 David Kilzer (:ddkilzer) 2007-11-29 20:48:56 PST
I'm going to mark this a duplicate of Bug 16097 since it has a radar and a packet trace associated with it.



*** This bug has been marked as a duplicate of 16097 ***