Modified: trunk/Tools/ChangeLog (257922 => 257923)
--- trunk/Tools/ChangeLog 2020-03-05 18:02:17 UTC (rev 257922)
+++ trunk/Tools/ChangeLog 2020-03-05 18:07:20 UTC (rev 257923)
@@ -1,3 +1,15 @@
+2020-03-05 Carlos Alberto Lopez Perez <clo...@igalia.com>
+
+ style-checker: Add UAF to the list of security words to warn about.
+ https://bugs.webkit.org/show_bug.cgi?id=208643
+
+ Reviewed by Jonathan Bedard.
+
+ UAF is a common acronym used for use after free.
+
+ * Scripts/webkitpy/style/checkers/changelog.py:
+ (ChangeLogChecker.check_for_unwanted_security_phrases):
+
2020-03-04 Basuke Suzuki <basuke.suz...@sony.com>
[MSVC] Add .natvis support of WebKit types
Modified: trunk/Tools/Scripts/webkitpy/style/checkers/changelog.py (257922 => 257923)
--- trunk/Tools/Scripts/webkitpy/style/checkers/changelog.py 2020-03-05 18:02:17 UTC (rev 257922)
+++ trunk/Tools/Scripts/webkitpy/style/checkers/changelog.py 2020-03-05 18:07:20 UTC (rev 257923)
@@ -103,7 +103,7 @@
"arbitrary code execution", "buffer overflow", "buffer overrun",
"buffer underrun", "dangling pointer", "double free", "fuzzer", "fuzzing", "fuzz test",
"invalid cast", "jsfunfuzz", "malicious", "memory corruption", "security bug",
- "security flaw", "use after free", "use-after-free", "UXSS",
+ "security flaw", "use after free", "use-after-free", "UAF", "UXSS",
"WTFCrashWithSecurityImplication",
"spoof", # Captures spoof, spoofed, spoofing
"vulnerab", # Captures vulnerable, vulnerability, vulnerabilities
