chore: cherry-pick 1536a564d959 from chromium #28812

ppontes · 2021-04-23T20:06:27Z

Mojo: Properly validate broadcast events

This corrects broadcast event deserialization by adding a missing
validation step when decoding the outer message header.

(cherry picked from commit 6740adb28374ddeee13febfd5e5d20cb8a365979)

Fixed: 1195308
Change-Id: Ia67a20e48614e7ef00b1b32f7f4e5f20235be310
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2808678
Reviewed-by: Daniel Cheng dcheng@chromium.org
Commit-Queue: Ken Rockot rockot@google.com
Cr-Original-Commit-Position: refs/heads/master@{#870238}
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2827760
Commit-Queue: Rubber Stamper rubber-stamper@appspot.gserviceaccount.com
Auto-Submit: Ken Rockot rockot@google.com
Bot-Commit: Rubber Stamper rubber-stamper@appspot.gserviceaccount.com
Cr-Commit-Position: refs/branch-heads/4430@{#1290}
Cr-Branched-From: e5ce7dc4f7518237b3d9bb93cccca35d25216cbe-refs/heads/master@{#857950}

Notes: Security: backported fix to CVE-2021-21223.

release-clerk · 2021-04-26T11:09:21Z

Release Notes Persisted

Security: backported fix to CVE-2021-21223.

chore: cherry-pick 1536a564d959 from chromium

6c8e824

ppontes requested a review from a team as a code owner April 23, 2021 20:06

ppontes added 12-x-y backport-check-skip Skip trop's backport validity checking semver/patch backwards-compatible bug fixes labels Apr 23, 2021

electron-cation bot added new-pr 🌱 PR opened in the last 24 hours and removed new-pr 🌱 PR opened in the last 24 hours labels Apr 23, 2021

update patches

254d208

nornagon approved these changes Apr 23, 2021

View reviewed changes

Merge branch '12-x-y' into cherry-pick/12-x-y/chromium/1536a564d959

fe39fc6

zcbenz approved these changes Apr 26, 2021

View reviewed changes

zcbenz merged commit 33036aa into 12-x-y Apr 26, 2021

zcbenz deleted the cherry-pick/12-x-y/chromium/1536a564d959 branch April 26, 2021 11:09

Provide feedback