| Summary: | crash in javascriptcore | ||||||
|---|---|---|---|---|---|---|---|
| Product: | WebKit | Reporter: | zhunkibatu | ||||
| Component: | JavaScriptCore | Assignee: | Nobody <webkit-unassigned> | ||||
| Status: | RESOLVED DUPLICATE | ||||||
| Severity: | Normal | CC: | mark.lam, serakeri, webkit-bug-importer, ysuzuki | ||||
| Priority: | P2 | Keywords: | InRadar | ||||
| Version: | WebKit Local Build | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| See Also: | https://bugs.webkit.org/show_bug.cgi?id=225094 | ||||||
| Attachments: |
|
||||||
Similar stack trace to bug 225094. I believe this may have been fixed. I'm unable to reproduce this on Safari 16.3 or on a jsc build with the latest commits. Yeah, this is fixed in bug 245066. Thanks! *** This bug has been marked as a duplicate of bug 245066 *** |
Created attachment 462613 [details] the minimal poc The following poc cause latest JavaScriptCore to crash. function main() { class a { g = [] 'a'(){} } }