Bug 141259

Summary: Optimized equal() functions in StringImpl.h may crash when shorter string is near the end of a page
Product: WebKit Reporter: Alexey Proskuryakov <ap>
Component: Web Template FrameworkAssignee: Michael Saboff <msaboff>
Status: NEW ---    
Severity: Normal CC: msaboff
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
See Also: https://bugs.webkit.org/show_bug.cgi?id=140873

Description Alexey Proskuryakov 2015-02-04 13:00:54 PST 
equal() reads some garbage bytes from the shorter string when comparing. This is OK most of the time, but not when the string ends at a page boundary, and the next page is not readable.