133064 – [Mac] Crash during scroll when latched

Bug 133064 - [Mac] Crash during scroll when latched

Summary: [Mac] Crash during scroll when latched

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebCore Misc. (show other bugs)
Version:	528+ (Nightly build)
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Brent Fulgham

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2014-05-18 22:38 PDT by Brent Fulgham
Modified:	2014-05-18 22:51 PDT (History)
CC List:	5 users (show)

See Also:

Attachments
Patch (1.36 KB, patch) 2014-05-18 22:47 PDT, Brent Fulgham	simon.fraser: review+	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Brent Fulgham 2014-05-18 22:38:23 PDT

It's possible to be latched to a DOM element, then attempt a new scroll event where the hit test for the mouse event returns NULL for the target element. When this happens, the NULL element is dereferenced without a NULL check resulting in a crash.

This patch corrects this mistake.

Comment 1 Brent Fulgham 2014-05-18 22:39:00 PDT

<rdar://problem/16761067>

Comment 2 Brent Fulgham 2014-05-18 22:47:11 PDT

Created attachment 231676 [details]
Patch

Comment 3 Brent Fulgham 2014-05-18 22:49:32 PDT

Wow, Simon. That was fast!

Comment 4 Brent Fulgham 2014-05-18 22:51:03 PDT

Committed r169037: <http://trac.webkit.org/changeset/169037>