RESOLVED DUPLICATE of bug 173643173805
Systematic crashes on some pages of francetvinfo.fr 
https://bugs.webkit.org/show_bug.cgi?id=173805
Summary Systematic crashes on some pages of francetvinfo.fr
Gwendal
Reported 2017-06-23 23:54:11 PDT
Using Eolie or Epiphany (with adblockers disabled), visiting some articles on http://www.francetvinfo.fr/ lead to a systematic crash of Webkit. To reproduce: - visit http://www.francetvinfo.fr/politique/la-france-insoumise/vous-ne-pouvez-pas-dire-vive-la-france-une-interview-d-une-deputee-insoumise-suscite-la-polemique_2250759.html - scroll down - it should crash at some point
Attachments
Add attachment proposed patch, testcase, etc.
Michael Catanzaro
Comment 1 2017-06-24 05:36:16 PDT
(gdb) bt #0 0x00007f070037cdb6 in JSC::JSValue::isString() const (this=0x7ffd47aeef10) at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/runtime/JSCJSValueInlines.h:576 #1 0x00007f070037cdb6 in JSC::JSValue::toStringOrNull(JSC::ExecState*) const (exec=0x7ffd47aef170, this=0x7ffd47aeef10) at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/runtime/JSString.h:773 #2 0x00007f070037cdb6 in JSC::toStringView<JSC::DFG::operationParseIntGeneric(JSC::ExecState*, JSC::EncodedJSValue, int32_t)::<lambda(WTF::StringView)> > (callback=..., value=..., exec=0x7ffd47aef170) at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/runtime/ParseInt.h:219 #3 0x00007f070037cdb6 in JSC::DFG::operationParseIntGeneric(JSC::ExecState*, JSC::EncodedJSValue, int32_t) (exec=0x7ffd47aef170, value=0, radix=10) at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/dfg/DFGOperations.cpp:904 #4 0x00007f069855f0ef in () It's bug #173643. *** This bug has been marked as a duplicate of bug 173643 ***
Note You need to log in before you can comment on or make changes to this bug.