Closed
Bug 841914
Opened 11 years ago
Closed 11 years ago
"ASSERTION: Bad type!" with <applet>
Categories
(Core Graveyard :: Plug-ins, defect, P2)
Tracking
(Not tracked)
RESOLVED
WORKSFORME
People
(Reporter: jruderman, Assigned: gfritzsche)
References
Details
(Keywords: assertion, sec-moderate, testcase)
Attachments
(2 files)
###!!! ASSERTION: Bad type!: 'actor->Type() == Proxy', file dom/plugins/ipc/PluginScriptableObjectChild.cpp, line 63 I have the "Java Plugin" shim that comes with Mac OS X 10.8, but not Java. So the plugin is just trying to draw a "Missing Java" thing, repeatedly.
Reporter | ||
Comment 1•11 years ago
|
||
Comment 2•11 years ago
|
||
Bug 840216 is another bug having to do with the "Java Plugin shim".
See Also: → 840216
Assignee | ||
Comment 3•11 years ago
|
||
(In reply to Jesse Ruderman from comment #0) > ###!!! ASSERTION: Bad type!: 'actor->Type() == Proxy', file > dom/plugins/ipc/PluginScriptableObjectChild.cpp, line 63 This might have the same or a similar trigger as what we're seeing in bug 824069 - the PluginScriptableObjectChild being used was already deallocated, triggering a collection of weird behaviours around the ScriptableObjectChild.
Priority: -- → P2
Comment 4•11 years ago
|
||
Georg, can you suggest a security rating for this?
Assignee | ||
Comment 5•11 years ago
|
||
(In reply to Al Billings [:abillings] from comment #4) > Georg, can you suggest a security rating for this? Going over the severity rating description in the wiki i'd think sec-low to sec-moderate: Apparently a Java bug leading to a bad state in the plugin-container which should be rather hard to use in a controlled exploit. But i am familiar with the security approaches here, so please take that with a grain of salt.
Updated•11 years ago
|
Keywords: sec-moderate
Reporter | ||
Comment 6•11 years ago
|
||
WFM. (I let the testcase run for a few minutes, using a Tinderbox build built from 126563fd3ba1.) In bug 841916 comment 13, Georg suggested that bug 831768 might have fixed this.
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → WORKSFORME
Updated•9 years ago
|
Group: core-security → core-security-release
Updated•7 years ago
|
Group: core-security-release
Updated•2 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•