Closed Bug 633043 Opened 9 years ago Closed 9 years ago
"Assertion failure: !vp->is
Primitive() && callee != &vp.to Object()" with Install Trigger
Assertion failure: !vp->isPrimitive() && callee != &vp.toObject(), at js/src/jscntxtinlines.h:732 This is the same assertion as in bug 621420, but the testcases are very different, and I think this bug a regression from the last few days.
Filed as security-sensitive because this seems to involve a chrome-content boundary. Please let me know if it's actually a security bug.
Andreas says he'll have a look.
Assignee: nobody → gal
Just a bad assert. I will fix (NPOTB).
cdleary-bot mozilla-central merge info: http://hg.mozilla.org/mozilla-central/rev/9ecbccbaff7b
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.