Wednesday, 18 January 2017

Mozilla crashes at OOM.

Lets DOS Mozilla ....

Mozilla Crashes at [@ OOM | large | NS_ABORT_OOM | nsAString_internal::Replace ]

Steps to Reproduce :

1. Open Mozilla any version any platform.
2. Just paste the below code in the ominibox.

"data:text/html,<script>document.location += document.location +

The browser gets hung and generates a Crash ID , mine was this.
It happens because Mozilla goes safe out of memory crash and nsPlainTextSerializer::AddToLine is using infallible string allocation.  

Bug reported by : Dhiraj Mishra 

