Fix CVE-2020-11793

Origin: https://trac.webkit.org/changeset/258532/webkit

===================================================================

Gbp-Pq: Name cve-2020-11793-fix.patch

diff --git a/Source/WebCore/html/HTMLTextAreaElement.cpp b/Source/WebCore/html/HTMLTextAreaElement.cpp
index 3741856367897cc3eafac86f8191052686fd1daa..681ca78001919797bc49d0e84697e9999fdebd99 100644 (file)
--- a/Source/WebCore/html/HTMLTextAreaElement.cpp
+++ b/Source/WebCore/html/HTMLTextAreaElement.cpp
@@ -284,13 +284,14 @@ void HTMLTextAreaElement::defaultEventHandler(Event& event)
 
 void HTMLTextAreaElement::subtreeHasChanged()
 {
-    setChangedSinceLastFormControlChangeEvent(true);
     setFormControlValueMatchesRenderer(false);
     updateValidity();
 
     if (!focused())
         return;
 
+    setChangedSinceLastFormControlChangeEvent(true);
+
     if (RefPtr<Frame> frame = document().frame())
         frame->editor().textDidChangeInTextArea(this);
     // When typing in a textarea, childrenChanged is not called, so we need to force the directionality check.