Closed
Bug 650501
Opened 14 years ago
Closed 14 years ago
Crash [@ nsScriptElement::MaybeProcessScript] with several innerHTML sets
Categories
(Core :: DOM: Core & HTML, defect)
Core
DOM: Core & HTML
Tracking
()
RESOLVED
FIXED
mozilla6
Tracking | Status | |
---|---|---|
firefox5 | --- | fixed |
People
(Reporter: jruderman, Assigned: hsivonen)
References
Details
(Keywords: crash, testcase)
Crash Data
Attachments
(3 files)
371 bytes,
application/xhtml+xml
|
Details | |
12.00 KB,
text/plain
|
Details | |
2.65 KB,
patch
|
smaug
:
review+
jst
:
approval-mozilla-aurora+
|
Details | Diff | Splinter Review |
Crash [@ nsScriptElement::MaybeProcessScript] The code that's crashing was added in bug 592366: http://hg.mozilla.org/mozilla-central/annotate/b140e7746652/content/base/src/nsScriptElement.cpp#l172
Reporter | ||
Comment 1•14 years ago
|
||
Reporter | ||
Comment 2•14 years ago
|
||
bp-435d5c20-3595-4ba7-8064-227502110416
Assignee | ||
Comment 3•14 years ago
|
||
Needs more null checking.
Assignee: nobody → hsivonen
Status: NEW → ASSIGNED
Assignee | ||
Comment 4•14 years ago
|
||
This code was written with HTML in mind. Yay for XML code paths. :-( That we come to this branch at all is bogus. Will fix properly in bug 563322.
Attachment #526706 -
Flags: review?(Olli.Pettay)
Updated•14 years ago
|
Attachment #526706 -
Flags: review?(Olli.Pettay) → review+
Assignee | ||
Comment 5•14 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/2648367a59f0
Status: ASSIGNED → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
Assignee | ||
Comment 6•14 years ago
|
||
Comment on attachment 526706 [details] [diff] [review] Add a null check This is a stability fix that simply adds a null check. Seems to fit the Aurora criteria, so nominating.
Attachment #526706 -
Flags: approval-mozilla-aurora?
Assignee | ||
Updated•14 years ago
|
OS: Mac OS X → All
Hardware: x86 → All
Updated•14 years ago
|
Attachment #526706 -
Flags: approval-mozilla-aurora? → approval-mozilla-aurora+
Assignee | ||
Comment 7•14 years ago
|
||
http://hg.mozilla.org/mozilla-aurora/rev/759590bbd0c9
status-firefox5:
--- → fixed
Target Milestone: --- → mozilla6
Updated•14 years ago
|
Crash Signature: [@ nsScriptElement::MaybeProcessScript]
Updated•6 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•