Bug#568485: webkit: denial-of-service via javascript document.write()
Mike Hommey
mh at glandium.org
Fri Feb 5 07:00:15 UTC 2010
On Thu, Feb 04, 2010 at 10:23:06PM -0500, Michael Gilbert wrote:
> package: xulrunner
> severity: normal
> tags: security
>
> hi, a denial-of-service has been published for safari [0]. i've tested
> this, and webkit is also affected.
>
> [0] http://seclists.org/bugtraq/2010/Feb/51
This is a pathetic description, and it has nothing to do with the
javascript engine. Writing an html page with that much <marquee> tags
will have the same effect. I'm also pretty sure you can find other
"advisories" for various other kinds of similar bad handling of massive
content.
Mike
More information about the pkg-mozilla-maintainers
mailing list