<html>
<head>
<base href="https://bugs.webkit.org/" />
</head>
<body><span class="vcard"><a class="email" href="mailto:darin@apple.com" title="Darin Adler <darin@apple.com>"> <span class="fn">Darin Adler</span></a>
</span> changed
<a class="bz_bug_link
bz_status_NEW "
title="NEW - Fix strncpy use in WebCore::Text::formatForDebugger"
href="https://bugs.webkit.org/show_bug.cgi?id=145608">bug 145608</a>
<br>
<table border="1" cellspacing="0" cellpadding="8">
<tr>
<th>What</th>
<th>Removed</th>
<th>Added</th>
</tr>
<tr>
<td style="text-align:right;">Product</td>
<td>Security
</td>
<td>WebKit
</td>
</tr>
<tr>
<td style="text-align:right;">Version</td>
<td>525.x (Nightly build)
</td>
<td>528+ (Nightly build)
</td>
</tr>
<tr>
<td style="text-align:right;">Component</td>
<td>Security
</td>
<td>XML DOM
</td>
</tr>
<tr>
<td style="text-align:right;">Assignee</td>
<td>webkit-security-unassigned@lists.webkit.org
</td>
<td>webkit-unassigned@lists.webkit.org
</td>
</tr>
<tr>
<td style="text-align:right;">Group</td>
<td>Security-Sensitive
</td>
<td>
</td>
</tr></table>
<p>
<div>
<b><a class="bz_bug_link
bz_status_NEW "
title="NEW - Fix strncpy use in WebCore::Text::formatForDebugger"
href="https://bugs.webkit.org/show_bug.cgi?id=145608#c11">Comment # 11</a>
on <a class="bz_bug_link
bz_status_NEW "
title="NEW - Fix strncpy use in WebCore::Text::formatForDebugger"
href="https://bugs.webkit.org/show_bug.cgi?id=145608">bug 145608</a>
from <span class="vcard"><a class="email" href="mailto:darin@apple.com" title="Darin Adler <darin@apple.com>"> <span class="fn">Darin Adler</span></a>
</span></b>
<pre>While it’s OK to treat this the way we treat some security bugs since it does involve a buffer overrun in theory, I don’t think it’s critical to have it inside the hidden component.</pre>
</div>
</p>
<hr>
<span>You are receiving this mail because:</span>
<ul>
<li>You are the assignee for the bug.</li>
</ul>
</body>
</html>