## JavaScriptCore Version 0fb46c57f3e30f8f3c95e2be03fc3078e671fa9a ## Testcase and Execution steps ``` function f0() { try { eval(`anything()`); } catch (error) { f0.bind()(error); } } function f1() { f0(); f1(); } while (true) { f1(); } ``` ./bin/jsc testcase.js ## Output Segmentation fault (core dumped) ## Backtrace AddressSanitizer:DEADLYSIGNAL ================================================================= ==16740==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000005 (pc 0x7f5686f401d8 bp 0x7ffcc41208f0 sp 0x7ffcc4120850 T0) ==16740==The signal is caused by a READ memory access. ==16740==Hint: address points to the zero page. #0 0x7f5686f401d8 (<unknown module>) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV (<unknown module>) ==16740==ABORTING
<rdar://problem/108199593>
Pull request: https://github.com/WebKit/WebKit/pull/13099
Committed 263312@main (0eef1c81db08): <https://commits.webkit.org/263312@main> Reviewed commits have been landed. Closing PR #13099 and removing active labels.