[Webkit-unassigned] [Bug 22932] New: Corrupt HTTP response cause NULL ptr
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Dec 19 06:06:59 PST 2008
https://bugs.webkit.org/show_bug.cgi?id=22932
Summary: Corrupt HTTP response cause NULL ptr
Product: WebKit
Version: 525.x (Safari 3.2)
Platform: PC
OS/Version: Mac OS X 10.5
Status: NEW
Severity: Critical
Priority: P2
Component: New Bugs
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: skylined at chromium.org
I server replying with 'HTTP/.1 409\n:"\rB\n \n' can cause Safari to crash
because of a NULL ptr Read AV.
A have a zip with a small server written in python that can be used to serve
the repro. Install python, unzip the file and run:
ReproServer.py "AMD-SKYLINED-NL - Safari 525.26.13 (WebKit 525.26.2) - 0640018F
-
ReadAV(mov)[4]@CoreFoundation!CFCharacterSetInitInlineBuffer+0x357.asResponseLog.zuul3.pickle"
Then browser to http://localhost:28876 in Safari to see the crash.
As soon as I figure out how to upload it, I'll do so.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list