| commit | 228153b29c3e235fa5d40ff09f8403fa2e8f7226 | |
| author | Thiago Macieira <thiago.macieira@nokia.com> | |
| Thu, 29 Jan 2009 15:07:27 +0000 (29 16:07 +0100) | ||
| committer | Kent Hansen <khansen@trolltech.com> | |
| Fri, 4 Sep 2009 10:40:59 +0000 (4 12:40 +0200) | ||
| tree | a6339bba847a5b420c01b7427cae85055e5bb2c9 | treesnapshot (tar.gz zip) |
| parent | 3944904b361b5a585a6e07bf17528d4739caed39 | commitdiff |
Fix oversize-buffer support for aligning.
Since Vector initialises VectorBase with the value of inlineBuffer(), it does so before the m_inlineBuffer member has had a chance to initialise. This lead to dereferencing of uninitialised pointers and, as was expected, crashes.
Since Vector initialises VectorBase with the value of inlineBuffer(), it does so before the m_inlineBuffer member has had a chance to initialise. This lead to dereferencing of uninitialised pointers and, as was expected, crashes.
| src/3rdparty/webkit/JavaScriptCore/wtf/Vector.h | diffblobblamehistory |