Crash when secondary clicking on a link on yahoo.com
Created attachment 266693 [details] Patch
Committed r193499: <http://trac.webkit.org/changeset/193499>
Comment on attachment 266693 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=266693&action=review > Source/WebKit2/UIProcess/mac/WebContextMenuProxyMac.mm:271 > + auto absoluteLinkURL = URL(ParsedURLString, hitTestData.absoluteLinkURL); I’m a bit surprised at the use of ParsedURLString here. Does this string com from something that the WebCore URL class produced in the other process that was shipped over by XPC? If so, then I suppose ParsedURLString is correct, but I worry slight if the URL “can be trusted” and thus how the use of ParsedURLString might be risky in some way.