search

mc-imperial / shader-compiler-bugs

A collection of shader compiler bugs.
MIT License
49 stars 9 forks source link

Adding two unreachable return statements causes garbage to be rendered #37

Closed paulthomson closed 7 years ago

paulthomson commented 7 years ago

[Shaders, screenshots, error log, reproduction steps, etc.] [ZIP]

Recipient:

recipient image

Variant:

variant image

paulthomson commented 7 years ago

Reported: https://community.imgtec.com/forums/topic/bug-glsl-iphone-se-unreachable-return-statements-in-shader-renders-garbage/

paulthomson commented 7 years ago

Also reported to Apple. Bug report ID: 29478780

afd commented 7 years ago

Fixed by Apple, and acknowledged here:

https://support.apple.com/en-us/HT207617

" WebKit

Available for: iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later

Impact: Processing maliciously crafted web content may result in the disclosure of process memory

Description: An information disclosure issue existed in the processing of OpenGL shaders. This issue was addressed through improved memory management.

CVE-2017-2424: Paul Thomson (using the GLFuzz tool) of the Multicore Programming Group, Imperial College London "