Bug 18315

Summary: alert from onblur handler can kill safari
Product: WebKit Reporter: Eric Seidel (no email) <eric>
Component: New BugsAssignee: Nobody <webkit-unassigned>
Status: NEW    
Severity: Normal CC: ap, dbates, dimich
Priority: P1 Keywords: HasReduction
Version: 528+ (Nightly build)   
Hardware: Mac   
OS: OS X 10.5   
See Also: https://bugs.webkit.org/show_bug.cgi?id=244426
Attachments:
Description Flags
test case (will crash safari)
none
most awesome screenshot ever
none
test case (crashes Safari 100%)
none
Crash log for the latest nightly build (r38826) none

Eric Seidel (no email)
Reported 2008-04-04 16:24:40 PDT
alert from onblur handler can kill safari
Attachments
test case (will crash safari) (535 bytes, text/html)
2008-04-04 16:27 PDT, Eric Seidel (no email) 		no flags
Details
most awesome screenshot ever (41.33 KB, image/png)
2008-04-04 16:32 PDT, Eric Seidel (no email) 		no flags
Details
test case (crashes Safari 100%) (529 bytes, text/html)
2008-08-25 15:47 PDT, Joachim De Lombaert 		no flags
Details
Crash log for the latest nightly build (r38826) (35.71 KB, text/plain)
2008-11-28 09:30 PST, Alexander Willner 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Eric Seidel (no email)
Comment 1 2008-04-04 16:27:59 PDT
Created attachment 20345 [details] test case (will crash safari)
Eric Seidel (no email)
Comment 2 2008-04-04 16:32:16 PDT
Created attachment 20346 [details] most awesome screenshot ever
Alexey Proskuryakov
Comment 3 2008-04-07 00:30:54 PDT
See also: bug 5394.
Joachim De Lombaert
Comment 4 2008-08-25 15:47:39 PDT
Created attachment 22988 [details] test case (crashes Safari 100%) Causes a minor DOS and resource load by opening hundreds of popup windows when triggered. Note: this could also be triggered on page load simply by showing an alert at load time.
Alexander Willner
Comment 5 2008-11-28 09:30:22 PST
Created attachment 25575 [details] Crash log for the latest nightly build (r38826)
Daniel Bates
Comment 6 2009-11-15 14:20:41 PST
I am unable to reproduce this issue the latest nightly build r50918. Is this still an issue?
Dmitry Titov
Comment 7 2010-02-03 14:51:00 PST
at r54201 it is still an issue. The "100%" attachment doesn't crash OSX version of the browser but it creates gazillion of alert boxes and makes this page impossible to close. Pretty bad.
Note You need to log in before you can comment on or make changes to this bug.