Closed Bug 1615130 Opened 6 years ago Closed 5 years ago

Potential uninitialized read in WebAudioUtils::LogToDeveloperConsole

Categories

(Core :: Web Audio, defect, P3)

Product:
Core
Component:
Web Audio
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla79
Tracking Flags:
Tracking Status
firefox75 --- wontfix
firefox79 --- fixed

People

(Reporter: deian, Assigned: koalab1999)

References

Details

Attachments

(1 file)

Bug 1615130 - Fix uninitialized data. r=padenot
47 bytes, text/x-phabricator-request
Details | Review

Semmle flagged uninitialized read of aLineNumber and aColumnNumber
https://searchfox.org/mozilla-central/source/dom/media/webaudio/WebAudioUtils.cpp#137-138

This looks like a true alert, but not really use if the JS context is every false here.

Printing garbage numbers on the console doesn't seem exploitable. The JS context might be null if this is called from C++

Group: core-security

Values are set to 0 by default rather than uninitialized. It is useful when AudioContext is null.

Assignee: nobody → koalab1999
Status: NEW → ASSIGNED

https://hg.mozilla.org/mozilla-central/rev/b912f803b3a8

Status: ASSIGNED → RESOLVED
Closed: 5 years ago
status-firefox79: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla79
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: