268314 – Protect WebProcess::unblockServicesRequiredByAccessibility from attempting to consume nullptr sandbox extensions

RESOLVED FIXED 268314

Protect WebProcess::unblockServicesRequiredByAccessibility from attempting to consume nullptr sandbox extensions

https://bugs.webkit.org/show_bug.cgi?id=268314

Summary Protect WebProcess::unblockServicesRequiredByAccessibility from attempting to...

Brent Fulgham

Reported 2024-01-29 11:28:32 PST

The code in WebProcess::unblockServicesRequiredByAccessibility assumes that it will always work with non-nullptr Sandbox Extensions. However, it's possible for the SandboxExtension::create() method to return nullptr, so we should harden this code to avoid crashing under such conditions. <rdar://121746329>

Attachments
Add attachment proposed patch, testcase, etc.

Brent Fulgham

Comment 1 2024-01-29 11:33:30 PST

Pull request: https://github.com/WebKit/WebKit/pull/23442

EWS

Comment 2 2024-01-29 20:23:51 PST

Committed 273719@main (a68ad5db5c83): <https://commits.webkit.org/273719@main> Reviewed commits have been landed. Closing PR #23442 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Nightly Build

Hardware Unspecified

OS Unspecified

Product WebKit

Component WebKit2

Assignee

Brent Fulgham

Reported

2024-01-29 11:28 PST

Modified

2024-01-29 20:23 PST History

CC List

2 users Show

URL

Keywords InRadar

Depends on

Blocks