61090 – JSGlobalObject and some others do GC allocation during initialization, which can cause heap corruption

RESOLVED FIXED61090

JSGlobalObject and some others do GC allocation during initialization, which can cause heap corruption

https://bugs.webkit.org/show_bug.cgi?id=61090

Summary JSGlobalObject and some others do GC allocation during initialization, which ...

Oliver Hunt

Reported 2011-05-18 13:30:24 PDT

JSGlobalObject and some others do GC allocation during initialization, which can cause heap corruption

Attachments
Patch (18.42 KB, patch) 2011-05-18 13:36 PDT, Oliver Hunt	sam: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Oliver Hunt

Comment 1 2011-05-18 13:36:31 PDT

Geoffrey Garen

Comment 2 2011-05-18 13:47:56 PDT

Oliver Hunt

Comment 3 2011-05-18 13:49:13 PDT

Ademar Reis

Comment 4 2011-05-19 13:36:40 PDT

Revision r86785 cherry-picked into qtwebkit-2.2 with commit 203ddbc <http://gitorious.org/webkit/qtwebkit/commit/203ddbc>

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware Unspecified

OS Unspecified

Product WebKit

Component New Bugs

Assignee

Oliver Hunt

Reported

2011-05-18 13:30 PDT

Modified

2011-05-19 13:36 PDT History

CC List

2 users Show

URL

Keywords

Depends on

Blocks