Stowage/ladybird
2
0
Fork 0
mirror of https://github.com/LadybirdBrowser/ladybird.git synced 2025-12-07 21:59:54 +00:00
Code Issues Projects Releases Packages Wiki Activity
ladybird/Libraries/LibWeb/ReferrerPolicy
History
Aliaksandr Kalenik 69cede4a0f AK+LibWeb: Make StringBase::bytes() lvalue-only 
Disallow calling `StringBase::bytes()` on temporaries to avoid returning
`ReadonlyBytes` that outlive the underlying string.

With this change, we catch a real UAF:
`load_result.data = maybe_response.release_value().bytes();`
All other updated call sites were already safe, they just needed to use
an intermediate named variable to satisfy the new lvalue-only
requirement.
2025-11-25 13:02:20 -05:00
..
AbstractOperations.cpp AK+LibWeb: Make StringBase::bytes() lvalue-only 2025-11-25 13:02:20 -05:00
AbstractOperations.h Everywhere: Hoist the Libraries folder to the top-level 2024-11-10 12:50:45 +01:00
ReferrerPolicy.cpp Everywhere: Hoist the Libraries folder to the top-level 2024-11-10 12:50:45 +01:00
ReferrerPolicy.h Everywhere: Hoist the Libraries folder to the top-level 2024-11-10 12:50:45 +01:00