Closed
Bug 266592
Opened 20 years ago
Closed 19 years ago
Buffer Overflow Crashes All Windows [@ fun_mark]
Categories
(Core Graveyard :: Java APIs for DOM, defect)
Tracking
(Not tracked)
RESOLVED
WORKSFORME
People
(Reporter: dachev, Assigned: ashuk)
References
()
Details
(Keywords: crash, testcase)
Crash Data
Attachments
(2 files, 6 obsolete files)
Testcase Image
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; rv:1.7.3) Gecko/20040913 Firefox/0.10.1 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; rv:1.7.3) Gecko/20040913 Firefox/0.10.1 Srolling the panoramic image at http://www.path.unimelb.edu.au/~bernardk/tutorials/360/ptviewer/vr/ptv002.html causes Firefox to crash. In my understanding the reason is a Buffer Overflow in JVM. Sometimes (but not always, as it sometimes crashes quietly), this brings the Windows Error Report agent/applet. After electing to debug, Visual Studio 6 issues Access Violation and application hangs at offset 0x00000000. I have attached a HotSpot Virtual Machine log file. Reproducible: Always Steps to Reproduce: 1.Go the the provided URL. 2.Scroll the panoramic image all the way to the top, then all the way to the bottom and then in any direction. Actual Results: Firefox crashes Platform: PC WinXP - Home FireFox 1.0PR (also reproducable on FireBird 0.7) Java Plug-in 1.5.0 for Netscape Navigator (DLL Helper) Error: Unhandled Exception in JPIOJI.DLL Occurs only when the applet is accessing the folowing JavaScript function: function getview(p,t,f) { document.cn.pan.value = p ; document.cn.tilt.value = t ; document.cn.fov.value = f ; }
|
Reporter | |
Comment 1•20 years ago
|
||
|
|
Reporter | |
Comment 2•20 years ago
|
||
Correction: FireFox 1.0PR generates Unhandled Exception in 0xC0000005, rather then JPIOJI.DLL (as wrongfully reported). FireBird 0.7 generates Unhandled Exception in JPIOJI.DLL
|
||
Comment 3•20 years ago
|
||
Confirming crash with Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8a5) Gecko/20041027 Firefox/0.9.1+. Java(TM) 2 Platform Standard Edition 5.0 (e.g. 1.5). Adding keyword crash. http://talkback-public.mozilla.org/talkback/fastfind.jsp?search=2&type=iid&id=TB1587557Y Stack Signature fun_mark d2e428f4 Source File, Line No. c:/builds/tinderbox/firefox/WINNT_5.0_Clobber/mozilla/js/src/jsfun.c, line 1306
Summary: Buffer Overflow Crashes All Windows → Buffer Overflow Crashes All Windows [@ fun_mark]
|
|
Reporter | |
Comment 4•20 years ago
|
||
Here is my original crash report: http://talkback-public.mozilla.org/talkback/fastfind.jsp?search=2&type=iid&id=1542365
|
|
Reporter | |
Comment 5•20 years ago
|
||
|
|
Reporter | |
Comment 6•20 years ago
|
||
|
|
Reporter | |
Comment 7•20 years ago
|
||
|
|
Reporter | |
Comment 8•20 years ago
|
||
|
|
Reporter | |
Comment 9•20 years ago
|
||
Attachment #164047 -
Attachment is obsolete: true
|
|
Reporter | |
Comment 10•20 years ago
|
||
Attachment #164056 -
Attachment is obsolete: true
|
|
Reporter | |
Updated•20 years ago
|
Attachment #164050 -
Attachment is obsolete: true
|
|
Reporter | |
Updated•20 years ago
|
Attachment #164048 -
Attachment is obsolete: true
|
|
Reporter | |
Updated•20 years ago
|
Attachment #164049 -
Attachment is obsolete: true
|
|
Reporter | |
Comment 11•20 years ago
|
||
Attachment #164057 -
Attachment is obsolete: true
|
||
Comment 12•19 years ago
|
||
I wan't able to reproduce when I just tested with Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.2) Gecko/20060313 Firefox/1.5.0.2 and JRE/Java Plug-in 1.4.2_06 Anyone still see the crash?
|
||
Comment 13•19 years ago
|
||
nor me on winxp with jre1.5.0 update 6. please reopen if you can reproduce with a recent jre.
Status: NEW → RESOLVED
Closed: 19 years ago
Resolution: --- → WORKSFORME
|
||
Updated•13 years ago
|
Crash Signature: [@ fun_mark]
|
|
||
Updated•13 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•