Comment 3 for bug 1822571

It's unclear why you switched this report from Public to Public Security. Neither the bug description nor the patch indicate a suspected attack vector which could take advantage of it. For example, does this represent a possible denial of service condition which an unprivileged user can exploit?