Bug 194575

Summary: generateUnlinkedCodeBlockForFunctions has a UAF
Product: WebKit Reporter: Saam Barati <saam>
Component: JavaScriptCoreAssignee: Saam Barati <saam>
Status: RESOLVED DUPLICATE    
Severity: Normal CC: benjamin, fpizlo, ggaren, gskachkov, guijemont, keith_miller, mark.lam, msaboff, rmorisset, ticaiolima, tzagallo, ysuzuki
Priority: P2    
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on:    
Bug Blocks: 194576    
Attachments:
Description Flags
patch none

Saam Barati
Reported 2019-02-12 17:51:20 PST
...
Attachments
patch (2.03 KB, patch)
2019-02-12 17:56 PST, Saam Barati 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Saam Barati
Comment 1 2019-02-12 17:56:35 PST
Created attachment 361878 [details] patch Tadeu, is there an infrastructure in place where I can test this function?
Tadeu Zagallo
Comment 2 2019-02-13 01:31:44 PST
I had a patch in https://bugs.webkit.org/show_bug.cgi?id=194536 for this. Right now, we only test the cache by running the stress tests with the cache enable + a test for the JSScript caching in the api tests.
Saam Barati
Comment 3 2019-02-13 02:05:20 PST
*** This bug has been marked as a duplicate of bug 194536 ***
Note You need to log in before you can comment on or make changes to this bug.