I've got a reproducable, although unfortunately internal, URL to reproduce this, without fail. If the "Summary" does not explain the issue correctly, and this does not reproduce the backtrace, I can attempt to reduce myself. 0 com.apple.WebCore 0x01b7e83f WebCore::HTMLImageLoader::image() const + 9 (HTMLImageLoader.h:45) 1 com.apple.WebCore 0x01bd3492 WebCore::HTMLImageElement::cachedImage() const + 20 (HTMLImageElement.h:66) 2 com.apple.WebCore 0x01a7ba5e WebCore::ImageTokenizer::finish() + 38 (ImageDocument.cpp:110) 3 com.apple.WebCore 0x018c9f06 WebCore::Document::finishParsing() + 40 (Document.cpp:1346) 4 com.apple.WebCore 0x018ab7c8 WebCore::Frame::endIfNotLoading() + 262 (Frame.cpp:699) 5 com.apple.WebCore 0x018ab7f6 WebCore::Frame::end() + 30 (Frame.cpp:682)
Is this a regression? I've got a completely different crash log trying to open <http://www.apple.com/askjnsdjf.jpg> in TOT.
(In reply to comment #1) That was yesterday's TOT, but now I updated, and cannot reproduce. FWIW.
Bug 10202 has the patch that supposedly fixed this crash. *** This bug has been marked as a duplicate of 10202 ***