Bugtraq mailing list archives
Re: remote DoS in Mozilla 1.0
From: Mikael Olsson <mikael.olsson () clavister com>
Date: Tue, 11 Jun 2002 16:44:04 +0200
Stijn, Stijn Jonker wrote:
Is this really a mozilla bug? My answer: No, because try and font of the size 1666666px in gimp on the same system, the symptoms and the end effect is exactly the same here. [...] The solution(s): (a) Fix every app to disallow font sizes bigger then <maxvalue> (b) Fix XFS to return an error code to the calling application when requested font size is greater then configured <maxvalue> Personally i would go for b. Just my $0.02, but if you disagree please let me know.
There's a world of difference between gimp and netscape. Fixing XFS is indeed a good idea, but I submit that it is also a very good idea to put a cap on font sizes in mozilla, and indeed anything else that accepts font rendering information from external sources. After all, mozilla runs on dozens of platforms, on different X servers. Mozilla is what is causing the vulnerability (gimp isn't). Indeed, XFS should be fixed, but from an overall vulnerability perspective, I'm quite convinced mozilla should be fixed too. People upgrade mozilla a _lot_ more often than they upgrade their X font servers. Regards, Mikael Olsson -- Mikael Olsson, Clavister AB Storgatan 12, Box 393, SE-891 28 ÖRNSKÖLDSVIK, Sweden Phone: +46 (0)660 29 92 00 Mobile: +46 (0)70 26 222 05 Fax: +46 (0)660 122 50 WWW: http://www.clavister.com "Senex semper diu dormit"
Current thread:
- remote DoS in Mozilla 1.0 Tom (Jun 10)
- Re: remote DoS in Mozilla 1.0 Stijn Jonker (Jun 11)
- Re: remote DoS in Mozilla 1.0 Mikael Olsson (Jun 11)
- Re: remote DoS in Mozilla 1.0 Tom (Jun 11)
- Re: remote DoS in Mozilla 1.0 Andreas Beck (Jun 11)
- Re: remote DoS in Mozilla 1.0 John C. Welch (Jun 11)
- Re: remote DoS in Mozilla 1.0 Jakub Bogusz (Jun 11)
- Re: remote DoS in Mozilla 1.0 Stijn Jonker (Jun 11)
- Very large font size crashing X Font Server and Grounding Server to a Halt (was: remote DoS in Mozilla 1.0) Federico Sevilla III (Jun 13)
- Re: Very large font size crashing X Font Server and Grounding Server to Alan Cox (Jun 13)
- rlimits and non overcommit (was: Very large font size ...) Federico Sevilla III (Jun 13)
- Re: Very large font size crashing X Font Server and Grounding Server to a Halt (was: remote DoS in Mozilla 1.0) rjh (Jun 13)
- Re: Very large font size crashing X Font Server and Grounding Server to a Halt (was: remote DoS in Mozilla 1.0) Rob Mayoff (Jun 13)
- Re: Very large font size crashing X Font Server and Grounding Server to a Halt (was: remote DoS in Mozilla 1.0) Matthew Wakeling (Jun 13)
- Re: Very large font size crashing X Font Server and Grounding Server to Alan Cox (Jun 13)