s-c doesn't play well with reviews containing overly long words
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
software-center (Ubuntu) |
Fix Released
|
Low
|
Robert Roth | ||
Precise |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
I haven't verified this, but a review with a word '99999999999999
---
SRU TEST CASE:
1. Launch the current Ubuntu Software Center in Precise.
2. Click the "Installed" toolbar button.
3. Choose an application to to a "test" review on (remember the title so you can find it later!), navigate to its details view and click the link for "Write your own review".
4. In the review window that opens, enter the various fields and for review text just enter a very long string of "9999999"s. Go crazy, make it wrap a few times.
5. Submit the review.
6. Look at the review and see that the review text of all 9's do not wrap, and instead scroll way off the side of the screen (see attached screenshot 1).
7. Close Ubuntu Software Center.
8. Update to the version of software-center in precise-proposed.
9. Launch Ubuntu Software Center again and navigate to the application you reviewed.
10. Verify that now the "9"s are wrapped, and there is no horizontal scrollbar (see attached screenshot 2).
11. Just below your review, click the "Delete" button because, well, you don't want this silly review to stick around with your name on it, do you?
SRU REGRESSION POTENTIAL:
Regression risk is near negligible. Fix simply adds a wrap mode to the field. If there is a regression, it might appear as poorly wrapped review text.
---
Related branches
- Gary Lasker (community): Approve
-
Diff: 10 lines (+1/-0)1 file modifiedsoftwarecenter/ui/gtk3/widgets/reviews.py (+1/-0)
description: | updated |
tags: | added: client-server |
Changed in software-center (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → Low |
Changed in software-center (Ubuntu): | |
assignee: | nobody → Robert Roth (evfool) |
status: | Confirmed → In Progress |
Changed in software-center (Ubuntu): | |
status: | In Progress → Fix Committed |
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a "regular" (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find.