Trying to search for --webm or -webm seems to take forever (?)

RESOLVED DUPLICATE of bug 553884

Status

()

RESOLVED DUPLICATE of bug 553884
8 years ago
8 years ago

People

(Reporter: ishikawa, Unassigned)

Tracking

Details

(URL)

(Reporter)

Description

8 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; ja; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3 ( .NET CLR 3.5.30729)
Build Identifier: 

I was trying to search for a bug related to "--disable-webm" and
typed in --webm and then -webm to the buzilla at mozilla when
I was trying to find out a related problem to the one I mentioned in
https://bugzilla.mozilla.org/show_bug.cgi?id=572001#c1
https://bugzilla.mozilla.org/show_bug.cgi?id=570882#c25

by hitting "FIND" button shown near the top of the bugzilla top page for a particular bug, say, for one of the URLs above.

Then to my surprise, bugzilla failed to respond. The search seemed to go on forever and I had to kill the search by closing the firefox tab.
Trying with '-webm' returns with no hits at all.
Searching with webm produced many hits although they contain so many
webmail-related entries and so were not useful for me.


Reproducible: Always

Steps to Reproduce:
1. Type in --webm or -webm in the text field next fo [FIND] button
   in a bugzilla entry.
2. Hit [FIND]
3.
Actual Results:  
bugzilla seems to enter a very long search activity to the point that
this can be used as "Denial of Service" if many people try the same (?) assuming
bugzilla is trying hard to do something.

Expected Results:  
I hope bugzilla tries to search for the verbatim string "-webm" without the quotes.

Comment 1

8 years ago
Not a security bug. The problem is that "-webm" is seen as "NOT webm". You cannot use quicksearch for such strings, unfortunately.
Group: bugzilla-security
Severity: major → normal
Status: UNCONFIRMED → RESOLVED
Last Resolved: 8 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 553884
(Reporter)

Comment 2

8 years ago
OK, as long as my query is not wasting CPU time on the bugzilla server, it is OK.
I was afraid that my query was putting load on the server in an unexpected manner.
You need to log in before you can comment on or make changes to this bug.