Closed Bug 1155223 Opened 9 years ago Closed 9 years ago

crash in nsCOMPtr_base::assign_with_AddRef(nsISupports*) | mozilla::net::HttpChannelChild::DoOnStopRequest(nsIRequest*, nsISupports*)

Categories

(Core :: Networking, defect)

Product:
Core
Component:
Networking
Platform:
x86
All
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1154598
Tracking Flags:
Tracking Status
firefox40 --- affected

People

(Reporter: jimm, Unassigned)

Details

(Keywords: crash, sec-critical, topcrash, Whiteboard: dupme)

Crash Data

bp-32186812-47a7-478a-96b7-1671a2150410

New top crash in content on Nightly, with an exploitability rating of 'High'.

first showed up: 2015-04-10

0 	xul.dll 	nsCOMPtr_base::assign_with_AddRef(nsISupports*) 	xpcom/glue/nsCOMPtr.cpp
1 	xul.dll 	mozilla::net::HttpChannelChild::DoOnStopRequest(nsIRequest*, nsISupports*) 	netwerk/protocol/http/HttpChannelChild.cpp
2 	xul.dll 	mozilla::net::HttpChannelChild::OnStopRequest(nsresult const&, mozilla::net::ResourceTimingStruct const&) 	netwerk/protocol/http/HttpChannelChild.cpp
3 	xul.dll 	mozilla::net::HttpChannelChild::RecvOnStopRequest(nsresult const&, mozilla::net::ResourceTimingStruct const&) 	netwerk/protocol/http/HttpChannelChild.cpp
4 	xul.dll 	mozilla::net::PHttpChannelChild::OnMessageReceived(IPC::Message const&) 	obj-firefox/ipc/ipdl/PHttpChannelChild.cpp
5 	xul.dll 	mozilla::dom::PContentChild::OnMessageReceived(IPC::Message const&) 	obj-firefox/ipc/ipdl/PContentChild.cpp
6 	xul.dll 	mozilla::ipc::MessageChannel::OnMaybeDequeueOne() 	ipc/glue/MessageChannel.cpp
Crash Signature: [@ nsCOMPtr_base::assign_with_AddRef(nsISupports*) | mozilla::net::HttpChannelChild::DoOnStopRequest(nsIRequest*, nsISupports*)] → [@ nsCOMPtr_base::assign_with_AddRef(nsISupports*) | mozilla::net::HttpChannelChild::DoOnStopRequest(nsIRequest*, nsISupports*)] [@ nsRefPtr<mozilla::dom::Promise>::assign_with_AddRef(mozilla::dom::Promise*) | mozilla::net::HttpChannelChild::DoOnStopRequ…
Isn't this a dup of Bug 1154598
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → DUPLICATE
Group: core-security → core-security-release
Group: core-security-release
Keywords: sec-critical
You need to log in before you can comment on or make changes to this bug.