From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.1+) Gecko/20010621 BuildID: 2001062121 When parts of the page are selected and deselected, the alt text of the 'images' is not handled correctly, so a lot of cruft remains on screen. Reproducible: Always Steps to Reproduce: 1.Go to the page 2.Click somewhere between the words 'crash' 3.Drag around Actual Results: Some words (the words that were touched by the mouse cursor) stayed selected, even when the selection was cleared. Expected Results: I'm not sure if the alt text should be selected as part of the page, but it should either be handled along with the rest of the text or not at all. Note that this page is originally meant to demonstrate a problem with (amongst others) NS4 crashing when encountering lots of <img href="mailto:x@a.b"> URLS. Mozilla is obviously not vulnerable to this.

moving out to 1.0, pretty much an edge case

Another one on: http://sourceforge.net/softwaremap/trove_list.php?form_cat=156&page=2 Scroll down to the button so you see the <1> <2> <3> links. Click and drag, beginning somewhere inside the <2> . Look for the funny effects.

alt text handling bug; QA -> me.

Bugs targeted at mozilla1.0 without the mozilla1.0 keyword moved to mozilla1.0.1 (you can query for this string to delete spam or retrieve the list of bugs I've moved)

don't move bugs that are in the 1.0 dependency tree. sorry.

Moving Netscape owned 0.9.9 and 1.0 bugs that don't have an nsbeta1, nsbeta1+, topembed, topembed+, Mozilla0.9.9+ or Mozilla1.0+ keyword. Please send any questions or feedback about this to adt@netscape.com. You can search for "Moving bugs not scheduled for a project" to quickly delete this bugmail.

do we have a usable testcase here?

Original testcase retreived from web.archive.org.

This is basically bug 12460 -- the alt text is generated content.

The "cruft" problem is gone now; compare FF 1.5 to trunk if you're not sure what exactly the "cruft" is. Selection is still broken, but that's bug 12460, I think. Resolving WORKSFORME.

Testcase will cause system crashes if you have an associated mail client; it will spawn 500 new email windows. As far as I'm concerned, it's a malicious testcase; can we remove it?

Comment on attachment 127660 [details] original testcase (opens 500 mailto URLs; be careful) Renaming the testcase so nobody else is suprised.

Here's a new testcase with 'mailto' search'n'replaced by 'bad' so it does not open all those windows. Apparently mozilla is vulnerable to this trick too...