DescriptionFix NavController buffer overflow found by IPC fuzzer.
Not possible in normal execution, but a compromised renderer process
can trigger a replacement operation when there are no committed
entries.
BUG=516088
TEST=ClusterFuzz reports as fixed.
Committed: https://crrev.com/37979a6e6ef37ba75a6ce2e7a894eb012571f632
Cr-Commit-Position: refs/heads/master@{#341765}
Patch Set 1 #
Messages
Total messages: 8 (2 generated)
|