Closed
Bug 1453016
Opened 7 years ago
Closed 7 years ago
Reduce unsafe usage of integer->enum casts in IPC
Categories
(Core :: Graphics: Layers, enhancement, P1)
Core
Graphics: Layers
Tracking
()
RESOLVED
FIXED
mozilla61
| Tracking | Status | |
|---|---|---|
| firefox61 | --- | fixed |
People
(Reporter: Alex_Gaynor, Assigned: Alex_Gaynor)
References
Details
Attachments
(1 file)
Graphics IPC uses |static_cast<gfx::SurfaceFormat>(aFormat)| in a handful of places in IPC which are unsafe under an adversarial content process, because it could send values that are outside the range of valid values.
I didn't spot any codepaths where this is necessarily exploitable, but there are a lot of them, so better safe than sorry :-)
| Comment hidden (mozreview-request) |
|
||
Comment 2•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8966638 [details]
Bug 1453016 - user safer enum serialization for gfx::SurfaceFormat in IPC;
https://reviewboard.mozilla.org/r/235350/#review241948
Attachment #8966638 -
Flags: review+
|
Assignee | |
Updated•7 years ago
|
Keywords: checkin-needed
Pushed by ccoroiu@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/3961427969b9
user safer enum serialization for gfx::SurfaceFormat in IPC; r=kats
Keywords: checkin-needed
|
||
Comment 4•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8966638 [details]
Bug 1453016 - user safer enum serialization for gfx::SurfaceFormat in IPC;
https://reviewboard.mozilla.org/r/235350/#review242194
Kats did this already, but yay, just for good measure :)
Attachment #8966638 -
Flags: review?(bas) → review+
|
||
Comment 5•7 years ago
|
||
| bugherder | ||
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla61
You need to log in
before you can comment on or make changes to this bug.
Description
•