120475 – [Windows] Moving back in history from a page with <video>, then moving forward causes crash

Bug 120475 - [Windows] Moving back in history from a page with <video>, then moving forward causes crash

Summary: [Windows] Moving back in history from a page with <video>, then moving forwar...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Media (show other bugs)
Version:	528+ (Nightly build)
Hardware:	PC All

Importance:	P2 Normal
Assignee:	Brent Fulgham

URL:
Keywords:	InRadar

Duplicates (1):	121816 (view as bug list)
Depends on:
Blocks:

Reported:	2013-08-29 09:07 PDT by Brent Fulgham
Modified:	2013-09-23 18:54 PDT (History)
CC List:	6 users (show)

See Also:

Attachments
Patch (2.77 KB, patch) 2013-09-23 17:32 PDT, Brent Fulgham	no flags	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Brent Fulgham 2013-08-29 09:07:27 PDT

The following steps cause a crash:

1. Launch WinLauncher.
2. Navigate to a page displaying video.  You do not need to start the video playing.
3. Use the "back" option to move back a level in the web history.
4. Use the "forward" option to return to the page displaying video.
5. *CRASH*

NOTE: Sometimes the crash occurs after moving "back", without requiring the "forward" step.

Crash dump:
>	CoreMedia.dll!FigBaseObjectFinalize(const void * cf)  Line 281 + 0x6 bytes	C
 	CoreFoundation.dll!_CFRelease(const void * cf)  Line 42344 + 0x3 bytes	C++
 	CoreFoundation.dll!CFRelease(const void * cf)  Line 41477 + 0x6 bytes	C++
 	AVFoundationCF.dll!player_sendSubtitleNotification(void * context)  Line 726 + 0xb bytes	C
 	libdispatch.dll!_dispatch_continuation_pop(void * dou)  Line 39407 + 0x9 bytes	C++
 	libdispatch.dll!_dispatch_queue_drain(dispatch_queue_s * dq)  Line 40401 + 0x11 bytes	C++
 	libdispatch.dll!_dispatch_queue_invoke(dispatch_queue_s * dq)  Line 40343 + 0x15 bytes	C++
 	7fffffff()	
 	libdispatch.dll!736633bf()

Comment 1 Radar WebKit Bug Importer 2013-08-29 09:08:20 PDT

<rdar://problem/14868236>

Comment 2 Brent Fulgham 2013-08-29 09:08:41 PDT

This behavior does not happen under Mac OS.

Comment 3 Brent Fulgham 2013-09-23 17:32:16 PDT

*** Bug 121816 has been marked as a duplicate of this bug. ***

Comment 4 Brent Fulgham 2013-09-23 17:32:32 PDT

Created attachment 212414 [details]
Patch

Comment 5 WebKit Commit Bot 2013-09-23 18:54:53 PDT

Comment on attachment 212414 [details]
Patch

Clearing flags on attachment: 212414

Committed r156315: <http://trac.webkit.org/changeset/156315>

Comment 6 WebKit Commit Bot 2013-09-23 18:54:55 PDT

All reviewed patches have been landed.  Closing bug.