[webkit-dev] DOS in Safari/WebKit?
Kurt Kohler
kohler at ao.com
Thu Dec 22 18:48:21 PST 2005
I haven't been following the chat room so I might have missed it, but
I'm surprised there hasn't been any discussion here about the "denial of
service" bug reported at the following URL.
http://www.security-protocols.com/advisory/sp-x22-advisory.txt
I don't want to jump to conclusions, but we're talking about open source
software here. He could have fixed it himself or at least filed a
Bugzilla report. As far as I can tell he did neither. He does claim to
have reported it to Apple. Is it in radar perhaps?
I'll wait before I say what I think about this guy. I don't want to be
slanderous without cause.
BTW I saw a claim elsewhere that it had been fixed in the nightlies, but
it looks like as of a few minutes ago ensureRows in TOT still has the
problem (it does a resize with a value that doesn't appear to be checked
against any limit).
Does html define a limit on the number of rows in a table?
Kurt Kohler
More information about the webkit-dev
mailing list