161899 – Null-pointer dereference in WebCore::MediaPlayer::getStartDate

RESOLVED DUPLICATE of bug 16898 161899

Null-pointer dereference in WebCore::MediaPlayer::getStartDate

https://bugs.webkit.org/show_bug.cgi?id=161899

Summary Null-pointer dereference in WebCore::MediaPlayer::getStartDate

codecolorist

Reported 2016-09-13 02:29:23 PDT

In webkit/Source/WebCore/html/HTMLMediaElement.cpp, the method HTMLMediaElement::getStartDate doesn't check if m_player is null: double HTMLMediaElement::getStartDate() const { return m_player->getStartDate().toDouble(); } So this simple one line javascript can crash the browser: document.createElement('video').getStartDate()

Attachments
Add attachment proposed patch, testcase, etc.

codecolorist

Comment 1 2016-09-13 02:51:56 PDT

*** This bug has been marked as a duplicate of bug 16898 ***

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution DUPLICATE

of bug 16898

Priority P2

Severity Normal

Classification Unclassified

Version Safari Technology Preview

Hardware Unspecified

OS Unspecified

Product WebKit

Component Media

Assignee

Nobody

Reported

2016-09-13 02:29 PDT

Modified

2016-09-13 02:51 PDT History

CC List

0 users

URL

Keywords

Depends on

Blocks