Skip to content

Commit

Permalink
[CVE-2018-8390] Edge - Inlining a fixed deferred function can lead to…
Browse files Browse the repository at this point in the history 
… OOB read/write - Internal
  • Loading branch information
@pleath @aneeshdk
pleath authored and aneeshdk committed Aug 14, 2018
1 parent e9d6a3e commit 63ae30a
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion lib/Backend/NativeCodeGenerator.cpp
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2848,7 +2848,7 @@ NativeCodeGenerator::GatherCodeGenData(
inlineCache->TryGetFixedMethodFromCache(functionBody, ldFldInlineCacheIndex, &fixedFunctionObject);
}

if (fixedFunctionObject && !fixedFunctionObject->GetFunctionInfo()->IsDeferred() && fixedFunctionObject->GetFunctionBody() != inlineeFunctionBody)
if (fixedFunctionObject && fixedFunctionObject->GetFunctionInfo() != inlineeFunctionBody->GetFunctionInfo())
{
fixedFunctionObject = nullptr;
}
Expand Down

0 comments on commit 63ae30a

Please sign in to comment.