by junon on 9/24/21, 8:38 AM
On XiaoMi phones at least, this is a system app (see: bloatware). That means you can't clear its app data nor uninstall it, effectively bricking Chrome permanently.
The only thing you can do is uninstall the updates, which force resets its persistence, losing all of your stored data/sessions.
If you've already done that... tough luck, I guess?
What an awful bug.
by SimeVidas on 9/24/21, 12:13 PM
> Chrome freezes and/or crashes. Note: this is even worse if the URL was opened from an intent. In that case, Chrome can end up completely bricked because upon restart it will immediately attempt to re-open the URL that crashed it. I could not recover from this without having to fully "Clear Storage".
You’re telling me Chrome does not have that feature where after a few failed attempts, the browser offers you to not open the websites from the previous session? Firefox has that.
by sigmonsays on 9/24/21, 9:57 PM
by antoineaugusti on 9/24/21, 8:31 AM
Warning: if you do this on your Android phone at the moment, you may have to completely clean your Chrome application storage to be able to use the app afterwards.
by throwaway3b03 on 9/24/21, 8:36 AM
I just did and the whole phone was frozen. I couldn't force close Chrome, nor do a graceful power off. After 2 min, a notification came up that allowed me to finally close the browser.
Amazing how even after an army of contributors and a fairly old project still has bugs as trivial and yet significant as this one. It's a regression, but even so.
by totetsu on 9/24/21, 11:01 AM
Now to get some QR codes of that url printed on sticker paper...
by chrismorgan on 9/24/21, 8:54 AM
Reminds me how in the first public release of Chrome you could crash the entire browser by typing % in the address bar.
by meibo on 9/24/21, 10:08 AM
Not sure what I expected. My poor tabs.
by eganist on 9/24/21, 1:55 PM
Surprised this wasn't submitted or treated by Google as a security defect. I don't think Google pays out for DoS typically, but considering how easily this can be weaponized, this one probably should've paid out.
Especially if the mechanism of the crash also allows for an RCE that hasn't been discovered yet. Worth equipping fuzzers with the URL as a prefix.
Edit: They reclassified it as a security defect and restricted permissions on it after my comment directly on the bug.
by exciteabletom on 9/24/21, 8:34 AM
Is "foo" used to mean any string, or is it literally only "../foo" that crashes it?
by aufhebung on 9/24/21, 8:57 AM
Strangely this bug does not seem to occur in incognito mode, at least on my phone.
by DarthNebo on 9/24/21, 8:39 AM
Did this to Chrome on Android & it crashed, but only for the first time. Subsequent requests simply took me to google search results instead of resolving the URL.
by hulitu on 9/24/21, 8:56 AM
On older versions of Chrome just goes to google.com and searches for this string. That's why i disabled automatic updates on my phone. Give me a changelog and i update. Bug fixes and performance improvements it's not a changelog.
by kklisura on 9/24/21, 9:06 AM
Works as expected on Brave (it's Chromium based)
by 0xdeadb00f on 9/24/21, 10:37 AM
Not an issue in Bromite or GrapheneOS' Vanadium chromium fork.
edit: correction: it effects both. Incognito tabs aren't affected.
by r3muxd on 9/24/21, 10:05 AM
doesn't work for me on kiwi 94 (a fork of chrome)
https://imgur.com/a/pBtuwRW
maybe you need to be not in incognito? i didn't want to test out of it in case it actually bricks my browser
by tssva on 9/24/21, 9:02 PM
Doesn't crash for me. Takes me to Google search.
by tester34 on 9/24/21, 8:36 AM
My bet is on url parser in unsafe language