Bug 312188

Summary: AX: crossFrameParentObject() and crossFrameChildObject() use the AXTreeStore without taking the lock, which is unsafe
Product: WebKit Reporter: Tyler Wilcock <tyler_w>
Component: AccessibilityAssignee: Tyler Wilcock <tyler_w>
Status: RESOLVED FIXED    
Severity: Normal CC: andresg_22, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: Other   
Hardware: All   
OS: All   

Tyler Wilcock
Reported 2026-04-13 13:56:23 PDT
...
Attachments
Add attachment proposed patch, testcase, etc.
Radar WebKit Bug Importer
Comment 1 2026-04-13 13:56:29 PDT
<rdar://problem/174685148>
Tyler Wilcock
Comment 2 2026-04-13 14:02:21 PDT
Pull request: https://github.com/WebKit/WebKit/pull/62664
EWS
Comment 3 2026-04-13 23:17:46 PDT
Committed 311175@main (78912d5d9c57): <https://commits.webkit.org/311175@main> Reviewed commits have been landed. Closing PR #62664 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.