Closed Bug 17449 Opened 25 years ago Closed 25 years ago

Calling the newStream(MimeType,target) method of PlugletInstancePeer can cause the crash of Mozilla

Categories

(Core Graveyard :: Java-Implemented Plugins, defect, P3)

x86
Windows NT
defect

Tracking

(Not tracked)

VERIFIED FIXED

People

(Reporter: avm, Assigned: blackconnect)

Details

(Keywords: crash)

Attachments

(1 file)

Overview Description: When Java-Implemented Plugin try to invoke the newStream(MimeType,target) method of PlugletInstancePeer object with some of arguments equals to null,then Mozilla crashes. Steps to reproduce: In initialize method of pluglet instance of any pluglet try to invoke method PlugletInstancePeer.newStream with first or second argument equals to null. Actual Results: The crash message, similar to: "The instruction at "0x12345678" referenced memory at "0x00000000"".Mozilla's abnormal termination. Expected Results: Mozilla shouldn't crash on any pluglet's action. Build Date & Platform Bug Found: Bug reproduced on Windows NT4.0. Currently pluglets doesn't work on other platforms, so can't check any more. The sources of build from 10.27.99
Status: NEW → ASSIGNED
The reason of this bug is : we do not check for NULL in native method implementation So, env->GetStringUTFChars(_target,NULL) in case _target == NULL, crashes mozilla. -- Suggested fix: Return NULL in the event of NULL argument.
Attached patch Fix for this bug (deleted) — Splinter Review
Status: ASSIGNED → RESOLVED
Closed: 25 years ago
Resolution: --- → FIXED
Adding crash keyword
Keywords: crash
Verified with Mozilla 0.9.5 (Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:0.9.5+) Gecko/20011030). Mozilla do not crashed.
Verified
Status: RESOLVED → VERIFIED
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: