Bug 41472

Summary:

Assertion Failure in WebCore::findPlaceForCounter; CSS counter NULL deref crash

Product:

WebKit

Reporter:

Justin Schuh <jschuh>

Component:

Layout and Rendering

Assignee:

Nobody <webkit-unassigned>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

carol, dbates, ddkilzer, gustavo, zaheer.mot

Priority:

Version:

528+ (Nightly build)

Hardware:

All

OS:

All

Attachments:

Description	Flags
CSS counter HTML	none

Description Justin Schuh 2010-07-01 11:05:13 PDT

The attached file triggers ASSERTs in RenderCounter::findPlaceForCounter() and eventually crashes with a clean NULL dereference.

Comment 1 Justin Schuh 2010-07-01 11:05:56 PDT

Created attachment 60263 [details]
CSS counter HTML

Comment 2 zaheer 2010-09-01 02:45:33 PDT

not repro on trunk + gtk - 66582

Comment 3 Justin Schuh 2010-09-01 06:46:20 PDT

Fixed in http://trac.webkit.org/changeset/66052