Update example bug for browser memory corruption in severity guidelines

319125 is a straightforward browser memory corruption bug where an IPC handler blindly trusts data from the renderer, forgetting that one of the types of data that can be set is a raw pointer ^_^ Change-Id: I14a37f1882c06edc56e5d4d2f7c1d0444869bec4 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1790480 Commit-Queue: Daniel Cheng <dcheng@chromium.org> Reviewed-by: Max Moroz <mmoroz@chromium.org> Reviewed-by: Emily Stark <estark@chromium.org> Cr-Commit-Position: refs/heads/master@{#694943}

Update example bug for browser memory corruption in severity guidelines
319125 is a straightforward browser memory corruption bug where an IPC handler blindly trusts data from the renderer, forgetting that one of the types of data that can be set is a raw pointer ^_^ Change-Id: I14a37f1882c06edc56e5d4d2f7c1d0444869bec4 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1790480 Commit-Queue: Daniel Cheng <dcheng@chromium.org> Reviewed-by: Max Moroz <mmoroz@chromium.org> Reviewed-by: Emily Stark <estark@chromium.org> Cr-Commit-Position: refs/heads/master@{#694943}
62a44a8f · Daniel Cheng · Commit Bot · 2219572e · 62a44a8f
Commit 62a44a8f authored Sep 09, 2019 by Daniel Cheng Committed by Commit Bot Sep 09, 2019
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

docs/security/severity-guidelines.md docs/security/severity-guidelines.md +1 -1

No files found.
--- a/docs/security/severity-guidelines.md
+++ b/docs/security/severity-guidelines.md
@@ -37,7 +37,7 @@ if there is evidence of active exploitation.
 Example bugs:
-* Memory corruption in the browser process ([564501](https://crbug.com/564501)).
+* Memory corruption in the browser process ([319125](https://crbug.com/319125#c10)).
 * Exploit chains made up of multiple bugs that can lead to code execution
  outside of the sandbox ([416449](https://crbug.com/416449)).
 * A bug that enables web content to read local files