[:philipp] Reporter
	Description • 7 years ago

This bug was filed from the Socorro interface and is
report bp-7a52dccb-ee3e-4153-aaa6-d327f0171208.
=============================================================

Top 10 frames of crashing thread:

0 xul.dll mozilla::net::Http2Session::ProcessConnectedPush netwerk/protocol/http/Http2Session.cpp:3472
1 xul.dll mozilla::net::Http2Session::WriteSegmentsAgain netwerk/protocol/http/Http2Session.cpp:3004
2 xul.dll mozilla::net::nsHttpConnection::OnSocketReadable netwerk/protocol/http/nsHttpConnection.cpp:1953
3 xul.dll mozilla::net::nsHttpConnection::OnInputStreamReady netwerk/protocol/http/nsHttpConnection.cpp:2290
4 xul.dll mozilla::net::nsSocketInputStream::OnSocketReady netwerk/base/nsSocketTransport2.cpp:298
5 xul.dll mozilla::net::nsSocketTransport::OnSocketReady netwerk/base/nsSocketTransport2.cpp:2206
6 xul.dll mozilla::net::nsSocketTransportService::DoPollIteration netwerk/base/nsSocketTransportService2.cpp:1193
7 xul.dll mozilla::net::nsSocketTransportService::Run netwerk/base/nsSocketTransportService2.cpp:947
8 xul.dll nsThread::ProcessNextEvent xpcom/threads/nsThread.cpp:1037
9 xul.dll NS_ProcessNextEvent xpcom/threads/nsThreadUtils.cpp:513

=============================================================

these crashes occur cross-platform and have been around for a while already, however they seem to be somewhat increasing on release since the firefox quantum launch now.

a sizeable portion of the reports indicate it's a UAF situation.

	Honza Bambas (:mayhemer)
	Comment 1 • 7 years ago

This has been walked around quite a long time.  Nick, can you take care of this one please?

	u408661 Assignee
	Comment 2 • 7 years ago

This appears to be consistently the same stack as bug 1416529. As that bug has a bit more info in it (including an ASAN log), I'm going to finish the work there.