[webkit-changes] [WebKit/WebKit] c31488: Potential OOB Read in ISOProtectionSystemSpecificH...

Arunsundar Kannan Mon, 22 May 2023 13:44:58 -0700

  Branch: refs/heads/main
  Home:   https://github.com/WebKit/WebKit
  Commit: c31488496881035b30feee2217f4640a6c71e18b
      
https://github.com/WebKit/WebKit/commit/c31488496881035b30feee2217f4640a6c71e18b
  Author: Arunsundar Kannan <arunsundar_kan...@apple.com>
  Date:   2023-05-22 (Mon, 22 May 2023)


  Changed paths:
    M 
Source/WebCore/platform/graphics/iso/ISOProtectionSystemSpecificHeaderBox.cpp

  Log Message:
  -----------
  Potential OOB Read in ISOProtectionSystemSpecificHeaderBox::parse(...).
https://bugs.webkit.org/show_bug.cgi?id=254931.
rdar://107441432

Reviewed by Jer Noble.

There is a potential OOB access in ISOProtectionSystemSpecificHeaderBox::parse 
when we do memcpy without a bounds check. This adds a bounds check to prevent 
such access.

* Source/WebCore/platform/graphics/iso/ISOProtectionSystemSpecificHeaderBox.cpp:
(WebCore::ISOProtectionSystemSpecificHeaderBox::parse):

Originally-landed-as: 259548.574@safari-7615-branch (0c76eb21f2d8). 
rdar://107441432
Canonical link: https://commits.webkit.org/264367@main


_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes

[webkit-changes] [WebKit/WebKit] c31488: Potential OOB Read in ISOProtectionSystemSpecificH...

Reply via email to