Bug 53957

Summary:

Crash after incorrectly restoring bogus session state.

Product:

WebKit

Reporter:

Brady Eidson <beidson>

Component:

WebKit2

Assignee:

Nobody <webkit-unassigned>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

darin

Priority:

Keywords:

InRadar

Version:

528+ (Nightly build)

Hardware:

All

OS:

All

Attachments:

Description	Flags
Patch v1	andersca: review+, beidson: commit-queue-

Description Brady Eidson 2011-02-07 16:13:42 PST

If a WebBackForwardList is restored with a certain bogus session state as input (current index pointing past the end of the entry list), the page involved is likely to crash later down the line when that wrong entry is accessed.

In radar as <rdar://problem/8960434>

Comment 1 Brady Eidson 2011-02-07 16:21:06 PST

Created attachment 81549 [details]
Patch v1

Comment 2 Brady Eidson 2011-02-07 16:22:59 PST

Landed in r77861