Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 07918cccab884c5682df3809c603f116cbba3763
https://github.com/WebKit/WebKit/commit/07918cccab884c5682df3809c603f116cbba3763
Author: Chris Dumez <[email protected]>
Date: 2026-05-01 (Fri, 01 May 2026)
Changed paths:
M Source/WebCore/contentextensions/ImmutableNFA.h
M Source/WebCore/contentextensions/ImmutableNFANodeBuilder.h
Log Message:
-----------
Uninitialized memory write in
WebCore::ContentExtensions::SerializedNFA::serialize
https://bugs.webkit.org/show_bug.cgi?id=312298
rdar://175273937
Reviewed by Michael Catanzaro.
ImmutableRange<char> has 2 bytes of struct padding after its char fields.
When SerializedNFA serializes the transitions vector as raw bytes, valgrind
flags those uninitialized padding bytes passed to the write() syscall.
Add a default constructor that calls zeroBytes() to ensure padding is
always zeroed.
* Source/WebCore/contentextensions/ImmutableNFA.h:
(WebCore::ContentExtensions::ImmutableRange::ImmutableRange):
* Source/WebCore/contentextensions/ImmutableNFANodeBuilder.h:
(WebCore::ContentExtensions::ImmutableNFANodeBuilder::sinkTransitions):
Canonical link: https://commits.webkit.org/312425@main
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
