Closed Bug 1728668 Opened 4 years ago Closed 4 years ago

[wpt-sync] Sync PR 30291 - ImageCapture: Fix a cluster fuzz crash when takePhoto() is called

Categories

(Testing :: web-platform-tests, task, P4)

Product:
Testing
Component:
web-platform-tests
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: wpt-sync, Unassigned)

References

(
URL
)

Details

(Whiteboard: [wptsync downstream])

Sync web-platform-tests PR 30291 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/30291
Details from upstream follow.

b'Jinho Bang <zino@chromium.org>' wrote:

ImageCapture: Fix a cluster fuzz crash when takePhoto() is called

According to the spec[1], the imageHeight and imageWidth is nullable
because they have no default value. The dictionary member might be null
if not explicitly specified.
So this patch adds logics to check if dictionary member has a value.

[1] https://w3c.github.io/mediacapture-image/#dictdef-photocapabilities

Bug: 1229991, 1242223, 1244252
Change-Id: I6c3d425a62949bef5081afe9207c0dba829976a4
Reviewed-on: https://chromium-review.googlesource.com/3137834
WPT-Export-Revision: 3dd0ec51593faa2f1ad8914795d384d5acd4cdc6

Status: NEW → RESOLVED
Closed: 4 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.