projects / profile / ivi / webkit-efl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 82d31e1) | patch
RootObject::finalize can cause a crash in object->invalidate()
authormhahnenberg@apple.com <mhahnenberg@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Wed, 15 Feb 2012 21:59:36 +0000 (21:59 +0000)
committermhahnenberg@apple.com <mhahnenberg@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Wed, 15 Feb 2012 21:59:36 +0000 (21:59 +0000)
commit843bb6b7d203e023fc68110ba0d233bfb5ecc8cf
tree2d89ebf11dec3bb5e55355faf9efdc4754b0e141tree | snapshot
parent82d31e1000f62d35118ef86a5107a5dc93e67ae1commit | diff
RootObject::finalize can cause a crash in object->invalidate()
https://bugs.webkit.org/show_bug.cgi?id=78645

Reviewed by Geoffrey Garen.

No new tests.

* bridge/runtime_root.cpp:
(JSC::Bindings::RootObject::finalize): Added a stack-allocated RefPtr to protect the RootObject
during the call to invalidate().

git-svn-id: http://svn.webkit.org/repository/webkit/trunk@107837 268f45cc-cd09-0410-ab3c-d52691b4dbfc
Source/WebCore/ChangeLog diff | blob | history
Source/WebCore/bridge/runtime_root.cpp diff | blob | history
Domain: Web Framework / Uncategorized;