Bug 41472 - Assertion Failure in WebCore::findPlaceForCounter; CSS counter NULL deref crash
Summary: Assertion Failure in WebCore::findPlaceForCounter; CSS counter NULL deref crash
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: Layout and Rendering (show other bugs)
Version: 528+ (Nightly build)
Hardware: All All
: P1 Normal
Assignee: Nobody
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-07-01 11:05 PDT by Justin Schuh
Modified: 2010-09-01 06:46 PDT (History)
5 users (show)

See Also:

Attachments
CSS counter HTML (141 bytes, text/html)
2010-07-01 11:05 PDT, Justin Schuh 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Justin Schuh 2010-07-01 11:05:13 PDT 
The attached file triggers ASSERTs in RenderCounter::findPlaceForCounter() and eventually crashes with a clean NULL dereference.
Comment 1 Justin Schuh 2010-07-01 11:05:56 PDT 
Created attachment 60263 [details]
CSS counter HTML
Comment 2 zaheer 2010-09-01 02:45:33 PDT 
not repro on trunk + gtk - 66582
Comment 3 Justin Schuh 2010-09-01 06:46:20 PDT 
Fixed in http://trac.webkit.org/changeset/66052