Bug 61090

Summary: JSGlobalObject and some others do GC allocation during initialization, which can cause heap corruption
Product: WebKit Reporter: Oliver Hunt <oliver>
Component: New BugsAssignee: Oliver Hunt <oliver>
Status: RESOLVED FIXED    
Severity: Normal CC: ademar, ggaren
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch sam: review+

Oliver Hunt
Reported 2011-05-18 13:30:24 PDT
JSGlobalObject and some others do GC allocation during initialization, which can cause heap corruption
Attachments
Patch (18.42 KB, patch)
2011-05-18 13:36 PDT, Oliver Hunt 		sam: review+
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Oliver Hunt
Comment 1 2011-05-18 13:36:31 PDT
Created attachment 93979 [details] Patch
Geoffrey Garen
Comment 2 2011-05-18 13:47:56 PDT
<rdar://problem/9455877>
Oliver Hunt
Comment 3 2011-05-18 13:49:13 PDT
Committed r86785: <http://trac.webkit.org/changeset/86785>
Ademar Reis
Comment 4 2011-05-19 13:36:40 PDT
Revision r86785 cherry-picked into qtwebkit-2.2 with commit 203ddbc <http://gitorious.org/webkit/qtwebkit/commit/203ddbc>
Note You need to log in before you can comment on or make changes to this bug.