Closed Bug 967522 Opened 11 years ago Closed 11 years ago

Faulty crash: too big nsTArray<Animation> in PLayerTransactionParent::Read

Tracking

()

Status:

RESOLVED DUPLICATE of bug 967167

People

(Reporter: bjacob, Unassigned)

References

(Blocks 1 open bug)

Details

Attachments

(1 file)

Faulty session 11 years ago Benoit Jacob [:bjacob] (mostly away) (deleted), text/plain		Details

Benoit Jacob [:bjacob] (mostly away)

Reporter

Description

•

11 years ago

Attached file Faulty session (deleted) — Details

Found by Christoph Diehl's "Faulty" fuzzer, see bug 777067

Benoit Jacob [:bjacob] (mostly away)

Reporter

Updated

•

11 years ago

Summary: Faulty crash: nsTArrayInfallibleAllocator::SizeTooBig, in PLayerTransactionParent::Read → Faulty crash: too big nsTArray<Animation> in PLayerTransactionParent::Read

Benoit Jacob [:bjacob] (mostly away)

Reporter

Updated

•

11 years ago

Status: NEW → RESOLVED

Closed: 11 years ago

Resolution: --- → DUPLICATE

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Faulty crash: too big nsTArray<Animation> in PLayerTransactionParent::Read

Categories

(Core :: Graphics, defect)

Tracking

()

People

(Reporter: bjacob, Unassigned)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Updated

Attachment

General

Description

File Name

Content Type