[Webkit-unassigned] [Bug 254412] [WASM] Memory Corruption in JSC::Wasm::isSubtype

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Mar 24 11:59:19 PDT 2023


Yusuke Suzuki <ysuzuki at apple.com> changed:

           What    |Removed                     |Added
           Assignee|webkit-security-unassigned@ |webkit-unassigned at lists.web
                   |lists.webkit.org            |kit.org
            Product|Security                    |WebKit
                 CC|                            |ysuzuki at apple.com
              Group|Security-Sensitive          |
          Component|Security                    |JavaScriptCore

--- Comment #2 from Yusuke Suzuki <ysuzuki at apple.com> ---
> --useWebAssemblyTypedFunctionReferences=true

This is not implemented fully & not enabled. So, this is not a security issue.

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230324/ade8882b/attachment-0001.htm>

More information about the webkit-unassigned mailing list