gnash-commit
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Gnash-commit] [bug #40440] Infinite loop in GC mark phase for XML objec

From: Sandro Santilli
Subject: [Gnash-commit] [bug #40440] Infinite loop in GC mark phase for XML objects
Date: Thu, 31 Oct 2013 21:16:57 +0000
User-agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:25.0) Gecko/20100101 Firefox/25.0 
URL:
  <http://savannah.gnu.org/bugs/?40440>

                 Summary: Infinite loop in GC mark phase for XML objects
                 Project: Gnash - The GNU Flash player
            Submitted by: strk
            Submitted on: Thu 31 Oct 2013 10:16:56 PM CET
                Category: core
                Severity: 6 - Security
                 Release: None
                  Status: None
                 Privacy: Public
             Assigned to: None
             Open/Closed: Open
         Discussion Lock: Any

    _______________________________________________________

Details:

Tried to write a testcase for bug #40439 by slighly modifying the one provided
for bug #39404 I handled to produce an infinite loop.
Oh what fun !

==12063== Process terminating with default action of signal 11 (SIGSEGV):
dumping core
==12063==  Access not within mapped region at address 0x7FE801FF8
==12063==    at 0x4FFC345: gnash::XMLNode_as::setReachable()
(XMLNode_as.cpp:474)


The source:

var x = new XML('<t></t>');
var x2 = new XML('<t></t>');
x2.appendChild(x);
x.appendChild(x2);




    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/bugs/?40440>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]