Closed
Bug 503699
Opened 15 years ago
Closed 15 years ago
Crash [@ nsTextBoxFrame::UpdateAccesskey] with QI that has side effects
Categories
(Core :: XUL, defect)
Tracking
()
RESOLVED
FIXED
People
(Reporter: jruderman, Assigned: smaug)
References
Details
(Keywords: crash, testcase, Whiteboard: [sg:critical?])
Crash Data
Attachments
(3 files)
|
715 bytes,
application/vnd.mozilla.xul+xml
|
Details | |
|
5.23 KB,
text/plain
|
Details | |
|
876 bytes,
patch
|
roc
:
review+
roc
:
superreview+
|
Details | Diff | Splinter Review |
I think the nsTextBoxFrame gets deleted while nsTextBoxFrame::UpdateAccesskey runs, because of the QI call it makes.
|
Reporter | |
Comment 1•15 years ago
|
||
|
|
Reporter | |
Comment 2•15 years ago
|
||
|
|
Reporter | |
Updated•15 years ago
|
Whiteboard: [sg:critical?]
|
Assignee | |
Comment 3•15 years ago
|
||
Fixes this bug, but we may want to think about some generic fix for the bugs Bug 503700 will find.
Assignee: nobody → Olli.Pettay
Status: NEW → ASSIGNED
Attachment #388129 -
Flags: superreview?(roc)
Attachment #388129 -
Flags: review?(roc)
Attachment #388129 -
Flags: superreview?(roc)
Attachment #388129 -
Flags: superreview+
Attachment #388129 -
Flags: review?(roc)
Attachment #388129 -
Flags: review+
Can XPConnect just ignore QueryInterface exposed by non-chrome-privilege content>?
|
|
Reporter | |
Comment 5•15 years ago
|
||
I split out that idea into bug 503926.
|
|
Assignee | |
Comment 6•15 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/72de70984119
Status: ASSIGNED → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
|
||
Updated•13 years ago
|
Crash Signature: [@ nsTextBoxFrame::UpdateAccesskey]
|
||
Updated•9 years ago
|
Group: core-security → core-security-release
|
||
Updated•9 years ago
|
Group: core-security-release
You need to log in
before you can comment on or make changes to this bug.
Description
•