Comment #4 on issue 7453 by [email protected]: aw, snap (tab crash) when visiting https://ibs.blumex.com/ http://code.google.com/p/chromium/issues/detail?id=7453
THe full dump can be found at http://crash/reportdetail?email=&clientid=&reportid=43eba2a63e5e7fd3&product=Chrome&version=&signature=&date= Stack Analysis for the crash: ############################# FAULTING_IP: ntdll!RtlFreeHeap+413 7c9108d3 8902 mov dword ptr [edx],eax EXCEPTION_RECORD: ffffffff -- (.exr 0xffffffffffffffff) ExceptionAddress: 7c9108d3 (ntdll!RtlFreeHeap+0x00000413) ExceptionCode: c0000005 (Access violation) ExceptionFlags: 00000000 NumberParameters: 2 Parameter[0]: 00000001 Parameter[1]: fffff3c0 Attempt to write to address fffff3c0 PROCESS_NAME: chrome.exe ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at "0x%08lx" referenced memory at "0x%08lx". The memory could not be "%s". WRITE_ADDRESS: fffff3c0 ADDITIONAL_DEBUG_TEXT: Enable Pageheap/AutoVerifer FAULTING_THREAD: 000003e4 BUGCHECK_STR: APPLICATION_FAULT_INVALID_POINTER_READ_HEAP_CORRUPTION PRIMARY_PROBLEM_CLASS: INVALID_POINTER_READ DEFAULT_BUCKET_ID: INVALID_POINTER_READ LAST_CONTROL_TRANSFER: from 017917da to 7c9108d3 STACK_TEXT: 00c6ee88 017917da 00a00000 00000000 00a69008 ntdll!RtlFreeHeap+0x413 00c6eec8 017f00f7 00a69008 01839a1d 00001152 chrome_11e0000!free+0x6e [f:\sp\vctools\crt_bld\self_x86\crt\src\free.c @ 110] 00c6eed0 01839a1d 00001152 00000000 018077f2 chrome_11e0000!v8::internal::RegExpStack::~RegExpStack+0x17 [c:\b\slave\chrome-official\build\src\v8\src\regexp-stack.cc @ 42] 00c6eedc 018077f2 025fee19 00a6363c 00000007 chrome_11e0000!v8::internal::RegExpMacroAssemblerIA32::Execute+0x7d [c:\b\slave\chrome-official\build\src\v8\src\regexp-macro-assembler-ia32.cc @ 1011] 00c6ef10 0180ad88 00c6ef6c 00a63648 00000002 chrome_11e0000!v8::internal::RegExpImpl::IrregexpExecOnce+0x152 [c:\b\slave\chrome-official\build\src\v8\src\jsregexp.cc @ 909] 00c6ef48 0180c22b 00c6ef6c 00a63638 00000000 chrome_11e0000!v8::internal::RegExpImpl::IrregexpExec+0xc8 [c:\b\slave\chrome-official\build\src\v8\src\jsregexp.cc @ 777] 00c6ef60 018154d3 00c6efa0 00a63638 00a6363c chrome_11e0000!v8::internal::RegExpImpl::Exec+0x4b [c:\b\slave\chrome-official\build\src\v8\src\jsregexp.cc @ 302] 00c6ef90 00a63638 00a64620 01b4016c 00000003 chrome_11e0000!v8::internal::Runtime_RegExpExec+0x103 [c:\b\slave\chrome-official\build\src\v8\src\runtime.cc @ 869] WARNING: Frame IP not in any known module. Following frames may be wrong. 00c6ef9c 00000000 00c6efc0 00000000 00c6efa0 0xa63638 STACK_COMMAND: ~1s; .ecxr ; kb SYMBOL_NAME: heap_corruption!heap_corruption FOLLOWUP_NAME: MachineOwner MODULE_NAME: heap_corruption IMAGE_NAME: heap_corruption DEBUG_FLR_IMAGE_TIMESTAMP: 0 FAILURE_BUCKET_ID: INVALID_POINTER_READ_c0000005_heap_corruption!heap_corruption BUCKET_ID: APPLICATION_FAULT_INVALID_POINTER_READ_HEAP_CORRUPTION_heap_corruption!heap_corruption -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
