On Thu, Feb 04, 2010 at 10:23:06PM -0500, Michael Gilbert wrote: > package: xulrunner > severity: normal > tags: security > > hi, a denial-of-service has been published for safari [0]. i've tested > this, and webkit is also affected. > > [0] http://seclists.org/bugtraq/2010/Feb/51
This is a pathetic description, and it has nothing to do with the javascript engine. Writing an html page with that much <marquee> tags will have the same effect. I'm also pretty sure you can find other "advisories" for various other kinds of similar bad handling of massive content. Mike -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
