[Bug 23140] New: Further Boundary Checking is Necessary on Slice Calls from bugzilla@jessica.w3.org on 2013-09-03 (public-webapps@w3.org from July to September 2013)

From: <bugzilla@jessica.w3.org>
Date: Tue, 03 Sep 2013 15:09:29 +0000
To: public-webapps@w3.org
Message-ID: <bug-23140-2927@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=23140

            Bug ID: 23140
           Summary: Further Boundary Checking is Necessary on Slice Calls
    Classification: Unclassified
           Product: WebAppsWG
           Version: unspecified
          Hardware: PC
                OS: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: File API
          Assignee: arun@mozilla.com
          Reporter: arun@mozilla.com
        QA Contact: public-webapps-bugzilla@w3.org
                CC: public-webapps@w3.org

https://bugzilla.mozilla.org/show_bug.cgi?id=906413 showcases a slice call on a
Blob of size 4 of the sort:

slice(0, Number.MAX_SIZE) 

on which on Fx returns a Blob of size 0, but only because of the 'long long'
threshold being reached.

This bug is to introduce further boundary checks on slice calls, disallowing a
slice bigger than the original blob for example.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Tuesday, 3 September 2013 15:09:31 UTC