Sat Apr 19 2025 08:06:29 PDT
  • Bug ID: 1332550, 1332597, 1338383, 1321612, 1322971, 1333568, 1333887, 1335450, 1325052, 1324379, 1336510

11 bugs found.
ID Type Summary Product Comp Assignee Status Resolution Updated
1325052 Assertion failure: !elements[i].isMarkable(), at /home/andre/hg/mozilla-inbound/js/src/gc/Marking.cpp:1607 Core JavaScript Engine andrebargull RESO FIXE 2017-11-03
1336510 lambda analysis for raw pointers misses references to |this| Developer Infrastruc Source Code Analysis nika RESO FIXE 2022-08-17
1333887 Crash in nsNPAPIPluginInstance::GetIsOOP Core Graveyard Plug-ins benjamin RESO FIXE 2022-05-16
1332550 nsCSSKeyframesRule::DeleteRule leaves dangling pointers on the rule being deleted Core CSS Parsing and Comp bzbarsky RESO FIXE 2020-06-05
1335450 Crash in RefPtr<T>::RefPtr<T> | nsTArray_Impl<T>::AppendElement<T> | TakeFrameRequestCallbacksFrom Core Web Painting bzbarsky RESO FIXE 2017-10-26
1321612 nsMultiMixedConv::OnDataAvailable may read beyond a buffer when content is received byte-by-byte Core Networking honzab.moz RESO FIXE 2017-10-26
1333568 Crash in nsStringBuffer::Release - from nsLocalFile::Remove() Core Networking: Cache honzab.moz RESO FIXE 2017-10-26
1322971 Cell iterators need a read barrier Core JavaScript: GC jcoppeard RESO FIXE 2017-10-26
1324379 AddressSanitizer: heap-use-after-free gecko/gfx/cairo/cairo/src/cairo-cff-subset.c:1494:25 in cairo_cff_font_write_cid_fontdict Core Graphics lsalzman RESO FIXE 2020-02-28
1332597 Crash [@ MustSkipMarking<js::jit::JitCode*>] or Assertion failure: addr % CellSize == 0, at gc/Heap.h:1168 with Workers Core JavaScript Engine nobody VERI FIXE 2023-12-06
1338383 Assertion failure: zone->gcZoneGroupEdges().empty(), at js/src/jsgc.cpp:4511 Core JavaScript: GC nobody VERI FIXE 2023-12-06
11 bugs found.