Details
-
Bug
-
Resolution: Fixed
-
Critical
-
Beryllium
-
Security Level: Public
-
None
Description
After CBL-5631 was fixed in LiteCore, we have seen that if the change callback is called after the c4queryobserver is disabled and the context object passed to th c4queryobserver is released (freed), the already-freed context object will be used and cause the crash.
The usage scenario that could cause the problem is when the query's listener token is removed at the same time that there is a new query's result change to be notified.