[webkit-changes] [WebKit/WebKit] c31488: Potential OOB Read in ISOProtectionSystemSpecificH...
Arunsundar Kannan
noreply at github.com
Mon May 22 13:44:50 PDT 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: c31488496881035b30feee2217f4640a6c71e18b
https://github.com/WebKit/WebKit/commit/c31488496881035b30feee2217f4640a6c71e18b
Author: Arunsundar Kannan <arunsundar_kannan at apple.com>
Date: 2023-05-22 (Mon, 22 May 2023)
Changed paths:
M Source/WebCore/platform/graphics/iso/ISOProtectionSystemSpecificHeaderBox.cpp
Log Message:
-----------
Potential OOB Read in ISOProtectionSystemSpecificHeaderBox::parse(...).
https://bugs.webkit.org/show_bug.cgi?id=254931.
rdar://107441432
Reviewed by Jer Noble.
There is a potential OOB access in ISOProtectionSystemSpecificHeaderBox::parse when we do memcpy without a bounds check. This adds a bounds check to prevent such access.
* Source/WebCore/platform/graphics/iso/ISOProtectionSystemSpecificHeaderBox.cpp:
(WebCore::ISOProtectionSystemSpecificHeaderBox::parse):
Originally-landed-as: 259548.574 at safari-7615-branch (0c76eb21f2d8). rdar://107441432
Canonical link: https://commits.webkit.org/264367@main
More information about the webkit-changes
mailing list