RESOLVED FIXED 48954
Website consistently crashing TOT in JIT::execute() on news.com.au 
https://bugs.webkit.org/show_bug.cgi?id=48954
Summary Website consistently crashing TOT in JIT::execute() on news.com.au
August Joki
Reported 2010-11-03 14:17:38 PDT
Visiting this site causes the nightly to consistently crash.
Attachments
Patch (3.65 KB, patch)
2010-11-05 12:38 PDT, Oliver Hunt 		barraclough: review+
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Simon Fraser (smfr)
Comment 1 2010-11-03 14:18:44 PDT
Crashes in JIT::execute()
Simon Fraser (smfr)
Comment 2 2010-11-03 14:19:04 PDT
<rdar://problem/8627522>
Oliver Hunt
Comment 3 2010-11-03 22:37:52 PDT
Something is assuming that |this| is an object/cell when in strict mode that is not necessarily true. Basic searches in the jit don't seem to indicate an obvious place that would be responsible for this.
Oliver Hunt
Comment 4 2010-11-05 12:38:44 PDT
Created attachment 73100 [details] Patch
Oliver Hunt
Comment 5 2010-11-05 12:43:06 PDT
Committed r71444: <http://trac.webkit.org/changeset/71444>
Note You need to log in before you can comment on or make changes to this bug.