WebKit Bugzilla
New
Browse
Search+
Log In
×
Sign in with GitHub
or
Remember my login
Create Account
·
Forgot Password
Forgotten password account recovery
RESOLVED FIXED
316858
[WebKit Process Model | All] Untrusted image bytes reach ImageIO codec dispatch in UIProcess via WebExtension icon loading
https://bugs.webkit.org/show_bug.cgi?id=316858
Summary
[WebKit Process Model | All] Untrusted image bytes reach ImageIO codec dispat...
Anthony Tarbinian
Reported
2026-06-10 16:17:42 PDT
rdar://177404759
This concerns the sink from WebExtension::iconForPath()
Attachments
Add attachment
proposed patch, testcase, etc.
Anthony Tarbinian
Comment 1
2026-06-12 10:05:15 PDT
Pull request:
https://github.com/apple/WebKit/pull/5635
Anthony Tarbinian
Comment 2
2026-06-12 10:20:21 PDT
Pull request:
https://github.com/apple/WebKit/pull/5637
Anthony Tarbinian
Comment 3
2026-06-17 14:30:58 PDT
Pull request:
https://github.com/WebKit/WebKit/pull/67370
EWS
Comment 4
2026-06-18 02:56:13 PDT
Committed
315453@main
(b9c7a1bf5685): <
https://commits.webkit.org/315453@main
> Reviewed commits have been landed. Closing PR #67370 and removing active labels.
EWS
Comment 5
2026-06-23 18:57:36 PDT
Committed
305413.1020@safari-7624.5-branch
(40bcce19cd7f): <
https://commits.webkit.org/305413.1020@safari-7624.5-branch
> Reviewed commits have been landed. Closing PR #5689 and removing active labels.
Note
You need to
log in
before you can comment on or make changes to this bug.
Top of Page
Format For Printing
XML
Clone This Bug