If we operate under the assumption that an attacker will exploit JSC and cause an OOB access, we should make such OOB accesses crash if they're in the gigacage runway.
Created attachment 326265 [details] patch
Comment on attachment 326265 [details] patch r=me
Comment on attachment 326265 [details] patch Clearing flags on attachment: 326265 Committed r224555: <https://trac.webkit.org/changeset/224555>
All reviewed patches have been landed. Closing bug.
<rdar://problem/35567063>