[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

What is a security bug?



It seems that I have difficulty understanding what constitutes a
security bug in a web browser.

Suppose that the web browser always crashes when confronted with
certain input, losing all of its state.  With tabbed browsing,
multiple browser opened by the same process etc., this means that
potentially important work is lost.

Is this a security bug?  Or is this more in the category of "don't do
that, then"?

I used to laugh at office regulations which recommend closing all
applications (including internal web applications) when browsing the
Internet, but if software vendors don't consider such crash bugs a
priority issue, they do make sense.



Reply to: