Executable::forEachCodeBlock doesn't check for null CodeBlocks in the ProgramExecutable and EvalExecutable cases, so if the CodeBlock has been cleared from either of these Executables we'll crash when dereferencing null inside whatever functor was passed.
Created attachment 234937 [details] Patch
Comment on attachment 234937 [details] Patch r=me
Comment on attachment 234937 [details] Patch Clearing flags on attachment: 234937 Committed r171108: <http://trac.webkit.org/changeset/171108>
All reviewed patches have been landed. Closing bug.