[Webkit-unassigned] [Bug 173862] [GTK] Layout Test webrtc/video.html issues "stack smashing detected"
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Jun 26 22:36:49 PDT 2017
https://bugs.webkit.org/show_bug.cgi?id=173862
Michael Catanzaro <mcatanzaro at igalia.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |mcatanzaro at igalia.com
--- Comment #4 from Michael Catanzaro <mcatanzaro at igalia.com> ---
You're right. I made this mistake once before, and it took hours before I realized the problem. Of course a GObject property is going to be a gboolean (an int), not a C++ bool (one byte). This is such an easy mistake to make when not being very careful. If you pass just one byte, then g_object_get() will write three bytes out of bounds.
It's probably impractical to audit the entire codebase for this issue, but we should check the revision that introduced the bug to check for other misuses, and also check surrounding code.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20170627/afef4317/attachment.html>
More information about the webkit-unassigned
mailing list