[webkit-changes] [WebKit/WebKit] 577579: jsc_fuz/wktr: null ptr deref in WebCore::ShareData...
lericaa
noreply at github.com
Sat Oct 28 03:54:37 PDT 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 577579c2ca9159d22ec96469cd168b843222b8fb
https://github.com/WebKit/WebKit/commit/577579c2ca9159d22ec96469cd168b843222b8fb
Author: Erica Li <lerica at apple.com>
Date: 2023-10-28 (Sat, 28 Oct 2023)
Changed paths:
M LayoutTests/TestExpectations
A LayoutTests/http/tests/webshare/navigator-share-files-fail-access-control-checks-crash-expected.txt
A LayoutTests/http/tests/webshare/navigator-share-files-fail-access-control-checks-crash.html
M Source/WebCore/page/ShareDataReader.cpp
Log Message:
-----------
jsc_fuz/wktr: null ptr deref in WebCore::ShareDataReader::start(WebCore::Document*, WebCore::ShareDataWithParsedURL&&) + 240 (ShareDataReader.cpp:53)
https://bugs.webkit.org/show_bug.cgi\?id\=263643
rdar://115059534
Reviewed by Chris Dumez.
Adding empty check for m_pendingFileLoads in case reader has canceled during loop due to error and accessing null ptr.
* LayoutTests/TestExpectations: Exclude console message as this test logging blob url which contains unique UUID generated from each run.
* LayoutTests/http/tests/webshare/navigator-share-files-fail-access-control-checks-crash-expected.txt: Added.
* LayoutTests/http/tests/webshare/navigator-share-files-fail-access-control-checks-crash.html: Added.
* Source/WebCore/page/ShareDataReader.cpp:
(WebCore::ShareDataReader::start):
Canonical link: https://commits.webkit.org/269885@main
More information about the webkit-changes
mailing list