[Webkit-unassigned] [Bug 51253] WebSockets: unbounded buffer growth when server sends bad data

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jan 5 18:19:36 PST 2011


https://bugs.webkit.org/show_bug.cgi?id=51253





--- Comment #6 from Ian Fette <ifette at google.com>  2011-01-05 18:19:35 PST ---
It seems like we have rough consensus on the working group for a new handshake that is GET+Upgrade with the payload masking from client to server. As such, I'm working on a -04 draft this week based on that method. The -04 text I'm working on does not have this issue. 

In my mind -76 is long dead, I would much rather see us put the nail in it by shipping -04 than continuing to fiddle with -76. In the meantime however, if this is important to avoid any sort of exploitable bug I would say feel free to do what you want, -76 should hopefully live no longer than another month and so I'm not really worried about being strictly compliant to a version of the spec we're trying to kill.

My $0.02.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list