Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Done
Priority: Major - P3
Fix Version/s: 3.1.9
Affects Version/s: 3.1.7
Component/s: JavaScript
Labels:
- spidermonkey

Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Sprint:
Platform 9 (09/18/15)
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

It is possible to get and set arbitrary C++ pointers in private fields on JS objects. It is possible to create an object which appears to be a type which had a field set, but wasn't created as such. Using functions on it which access these fields can result in a crash.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

SERVER-20375.js
Sep 15 2015 10:08:20 PM UTC
1 kB
Spencer Jackson

Assignee:: Mira Carey
Reporter:: Spencer Jackson
Participants:: Githook User, Mira Carey, Spencer Jackson
Votes:: 0 Vote for this issue
Watchers:: 6 Start watching this issue

Created:: Sep 11 2015 03:38:22 PM UTC
Updated:: Oct 07 2015 09:35:56 PM UTC
Resolved:: Sep 18 2015 02:55:07 PM UTC
Confidence Status Last Update:: 14/Sep/15 6:20 PM

Details

Description

Attachments

Attachments

Forms

Activity

People

Dates