Closed
Bug 1926468
Opened 7 months ago
Closed 7 months ago
Segmentation fault in spidermonkey wasm
Categories
(Core :: JavaScript: WebAssembly, defect)
Core
JavaScript: WebAssembly
Tracking
()
RESOLVED
DUPLICATE
of bug 1926463
People
(Reporter: neseesun, Unassigned)
Details
(Keywords: reporter-external)
Attachments
(1 file)
|
3.10 KB,
text/javascript
|
Details |
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36
Steps to reproduce:
version:
commit 3618a8a64555259091cff07cddebbe58ded841ac (HEAD -> bookmarks/central, origin/bookmarks/central, refs/cinnabar/refs/heads/bookmarks/central)
Author: Lee Salzman <lsalzman@mozilla.com>
Date: Sun Oct 20 15:47:44 2024 +0000
build spidermonkey with:
../configure --enable-debug --enable-wasm-js-string-builtins --enable-optimize --disable-tests --enable-wasm-simd --enable-wasm-avx --enable-wasm-moz-intgemm
run with:
js poc.js
Actual results:
Segmentation fault
Expected results:
parse wasm module normally
Reporter credit as:
Sun ZhiWei From Lenovo GIC CSL
|
||
Updated•7 months ago
|
Keywords: reporter-external
|
||
Updated•7 months ago
|
Group: firefox-core-security → javascript-core-security
Component: Untriaged → JavaScript: WebAssembly
Product: Firefox → Core
Version: other → unspecified
|
|
||
Updated•7 months ago
|
Flags: sec-bounty?
|
||
Updated•7 months ago
|
Status: UNCONFIRMED → RESOLVED
Closed: 7 months ago
Duplicate of bug: 1926463
Resolution: --- → DUPLICATE
|
|
||
Updated•6 months ago
|
Flags: sec-bounty? → sec-bounty-
|
|
||
Updated•21 days ago
|
Group: javascript-core-security
You need to log in
before you can comment on or make changes to this bug.
Description
•