Google Git
Sign in
webkit / WebKit / 46c114198791458c1ceb6b6a9d20aca0d7ceee61
commit46c114198791458c1ceb6b6a9d20aca0d7ceee61[log] [tgz]
authorjames.wei@intel.com <james.wei@intel.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>Tue Feb 05 04:30:01 2013 +0000
committerjames.wei@intel.com <james.wei@intel.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>Tue Feb 05 04:30:01 2013 +0000
tree9bf49ba2620fc14e949267015e380ee19aead95a
parentf75a8fd4a8614e0f1c9a58c2411decc1331a7fb3 [diff]
Heap-buffer-overflow in WebCore::AudioBufferSourceNode::process
https://bugs.webkit.org/show_bug.cgi?id=108515

After calling setBuffer() with a buffer having a different number of
channels, there can in rare cases be a slight delay before the output
bus is updated to the new number of channels because of use of
tryLocks() in the context's updating system.
In this case, if the the buffer has just been changed and we're
not quite ready yet then just output silence.

Reviewed by Chris Rogers.

* Modules/webaudio/AudioBufferSourceNode.cpp:
(WebCore::AudioBufferSourceNode::process):
(WebCore::AudioBufferSourceNode::renderFromBuffer):


git-svn-id: http://svn.webkit.org/repository/webkit/trunk@141851 268f45cc-cd09-0410-ab3c-d52691b4dbfc
2 files changed
tree: 9bf49ba2620fc14e949267015e380ee19aead95a
  1. Examples/
  2. LayoutTests/
  3. ManualTests/
  4. PerformanceTests/
  5. Source/
  6. Tools/
  7. WebKit.xcworkspace/
  8. WebKitLibraries/
  9. Websites/
  10. .dir-locals.el
  11. .gitattributes
  12. .gitignore
  13. .qmake.conf
  14. autogen.sh
  15. ChangeLog
  16. ChangeLog-2012-05-22
  17. CMakeLists.txt
  18. configure.ac
  19. GNUmakefile.am
  20. Makefile
  21. Makefile.shared
  22. WebKit.pro
  23. wscript