Closed Bug 840898 Opened 9 years ago Closed 9 years ago
List Binding crash with out-of-range .item()
No description provided.
On Windows: bp-7c8f6639-d356-4069-a9f4-b92832130213
Crash Signature: [@ mozilla::dom::WrapNewBindingObjectHelper<nsRefPtr<mozilla::WebGLBuffer>, int>::Wrap(JSContext*, JSObject*, nsRefPtr<mozilla::WebGLBuffer> const&, JS::Value*)]
OS: Mac OS X → All
Hardware: x86_64 → All
Attachment #713367 - Flags: review?(trev.saunders) → review+
Comment on attachment 713367 [details] [diff] [review] Flag our nullable return value as actually being nullable. [Approval Request Comment] Bug caused by (feature/regressing bug #): Bug 798567 ( User impact if declined: Easy to trigger null-deref crash Testing completed (on m-c, etc.): Passes tests. Risk to taking this patch (and alternatives if risky): Very very low risk. String or UUID changes made by this patch: None.
Attachment #713367 - Flags: approval-mozilla-aurora?
Whiteboard: [need review]
Target Milestone: --- → mozilla21
Comment on attachment 713367 [details] [diff] [review] Flag our nullable return value as actually being nullable. Approving low risk fix for uplift.
Attachment #713367 - Flags: approval-mozilla-aurora? → approval-mozilla-aurora+
You need to log in before you can comment on or make changes to this bug.