Closed Bug 1456249 Opened 7 years ago Closed 2 years ago

Crash in js::CloneFunctionReuseScript

Categories

(Core :: JavaScript Engine, defect, P2)

Product:
Core
Component:
JavaScript Engine
Platform:
Unspecified
Android
Type:
defect

Tracking

()

Status:
RESOLVED INCOMPLETE

People

(Reporter: tcampbell, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: crash, sec-high, Whiteboard: [#jsapi:crashes-retriage])

Crash Data

This bug was filed from the Socorro interface and is report bp-46228033-4a48-41d9-a906-8c9af0180419. ============================================================= Top 2 frames of crashing thread: 0 @0x3cfc0fc0 1 libxul.so js::CloneFunctionReuseScript js/src/vm/JSFunction.cpp:2092 ============================================================= There is a small volume of these crashes on Android which is curious. Previously this was a common signature for XDR corruption.
Depends on: 1367727
Keywords: sec-high
Steven, do you know who could have a closer look at this?
Flags: needinfo?(sdetar)
Stephanie we are following this bug is on our radar. Ted created this bug while analyzing a significant portion of the JS related crashes, which he has now categorized and plan to work on more each category holistically.
Flags: needinfo?(sdetar)
Stalled. The effected function will likely get a rewrite in the next few weeks as follow-up work to Bug 1471062.
Keywords: stalled

Removing employee no longer with company from CC list of private bugs.

Severity: critical → S2

Code has be rewritten since originally fired. Almost zero crashes these days and the few there are appear to be corruption elsewhere without enough actionable info to go off of.

Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → INCOMPLETE

Since the bug is closed, the stalled keyword is now meaningless.
For more information, please visit auto_nag documentation.

Keywords: stalled
Group: javascript-core-security
You need to log in before you can comment on or make changes to this bug.