[Webkit-unassigned] [Bug 190947] New: Post too much text to iFrame could crash webkit

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Oct 26 01:39:35 PDT 2018


            Bug ID: 190947
           Summary: Post too much text to iFrame could crash webkit
           Product: WebKit
           Version: Safari 12
          Hardware: iPhone / iPad
                OS: All
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: HTML DOM
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: hekai1229 at gmail.com
                CC: cdumez at apple.com

Created attachment 353164

  --> https://bugs.webkit.org/attachment.cgi?id=353164&action=review

bug demo

Sending too much data to iFrame could crash webkit on all iOS.

Reproducation Steps:

1. A form with the field which is assigned much text (~250KB).
2. Set the target of the form to an iframe
3. Submit the form

Reproduction page: http://adeline.cc/fe/test/post-to-iframe.html

HD Demo Videos: https://1drv.ms/f/s!Aq4mpP6jpjzKjqYdjanmchdTycD_HA

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20181026/92465d85/attachment.html>

More information about the webkit-unassigned mailing list