[Webkit-unassigned] [Bug 242683] heap-use-after-free in WebCore::RenderLayer::addChild()
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Mar 13 09:52:21 PDT 2023
https://bugs.webkit.org/show_bug.cgi?id=242683
--- Comment #10 from Michael Catanzaro <mcatanzaro at gnome.org> ---
BTW I saw some comments that Apple Product Security determined this bug does not affect Safari, but I doubt it. Based on the asan traces and the fix commit, it seems most likely that Apple tested an already-fixed version.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230313/929c933d/attachment.htm>
More information about the webkit-unassigned
mailing list