83794 2012-04-12 11:04:04 -0700 Typos in LayoutTests/http/tests/security/xssAuditor/script-tag-inside-svg-tag*.html 2012-04-12 11:57:47 -0700 1 1 1 Unclassified WebKit WebCore Misc. 528+ (Nightly build) All All RESOLVED FIXED XSSAuditor P2 Trivial --- 1 tsepez tsepez abarth dbates webkit.review.bot oldest_to_newest 601361 0 tsepez 2012-04-12 11:04:04 -0700 Several changes needed to make the XSS in these test cases fire against actual vulnerable browser: - %24 appears in a few places where %23 is required. - Appears webkit's httpd will terminate query parameters at unencoded semicolons ( ; ) - Misordered </svg></script> tags. The tests are still valid, but it is more intuitive to see the XSS pop up. 601378 1 136937 tsepez 2012-04-12 11:17:20 -0700 Created attachment 136937 Patch Only tests modified. 601407 2 136937 webkit.review.bot 2012-04-12 11:57:41 -0700 Comment on attachment 136937 Patch Clearing flags on attachment: 136937 Committed r114010: <http://trac.webkit.org/changeset/114010> 601408 3 webkit.review.bot 2012-04-12 11:57:47 -0700 All reviewed patches have been landed. Closing bug. 136937 2012-04-12 11:17:20 -0700 2012-04-12 11:57:41 -0700 Patch patch_83794.txt text/plain 3749 tsepez SW5kZXg6IExheW91dFRlc3RzL0NoYW5nZUxvZwo9PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09Ci0tLSBMYXlvdXRUZXN0cy9D aGFuZ2VMb2cJKHJldmlzaW9uIDExNDAwNCkKKysrIExheW91dFRlc3RzL0NoYW5nZUxvZwkod29y a2luZyBjb3B5KQpAQCAtMSwzICsxLDE4IEBACisyMDEyLTA0LTEyICBUb20gU2VwZXogIDx0c2Vw ZXpAY2hyb21pdW0ub3JnPgorCisgICAgICAgIFR5cG9zIGluIExheW91dFRlc3RzL2h0dHAvdGVz dHMvc2VjdXJpdHkveHNzQXVkaXRvci9zY3JpcHQtdGFnLWluc2lkZS1zdmctdGFnKi5odG1sCisg ICAgICAgIGh0dHBzOi8vYnVncy53ZWJraXQub3JnL3Nob3dfYnVnLmNnaT9pZD04Mzc5NAorCisg ICAgICAgIFJldmlld2VkIGJ5IE5PQk9EWSAoT09QUyEpLgorCisgICAgICAgIFNldmVyYWwgY2hh bmdlcyBuZWVkZWQgdG8gbWFrZSB0aGUgWFNTIGluIHRoZXNlIHRlc3QgY2FzZXMgZmlyZSBhZ2Fp bnN0IGFjdHVhbAorICAgICAgICB2dWxuZXJhYmxlIGJyb3dzZXJzLiBUaGUgdGVzdHMgd2VyZSBz dGlsbCB2YWxpZCwgYnV0IGl0IGlzIG1vcmUgaGVscGZ1bCB0byBzZWUKKyAgICAgICAgdGhlIFhT UyBwb3AgdXAuCisKKyAgICAgICAgKiBodHRwL3Rlc3RzL3NlY3VyaXR5L3hzc0F1ZGl0b3Ivc2Ny aXB0LXRhZy1pbnNpZGUtc3ZnLXRhZy5odG1sOgorICAgICAgICAqIGh0dHAvdGVzdHMvc2VjdXJp dHkveHNzQXVkaXRvci9zY3JpcHQtdGFnLWluc2lkZS1zdmctdGFnMi5odG1sOgorICAgICAgICAq IGh0dHAvdGVzdHMvc2VjdXJpdHkveHNzQXVkaXRvci9zY3JpcHQtdGFnLWluc2lkZS1zdmctdGFn My5odG1sOgorCiAyMDEyLTA0LTEyICBQaGlsaXBwZSBOb3JtYW5kICA8cG5vcm1hbmRAaWdhbGlh LmNvbT4KIAogICAgICAgICBVbnJldmlld2VkLCBHVEsgdGVzdF9leHBlY3RhdGlvbnMuCkluZGV4 OiBMYXlvdXRUZXN0cy9odHRwL3Rlc3RzL3NlY3VyaXR5L3hzc0F1ZGl0b3Ivc2NyaXB0LXRhZy1p bnNpZGUtc3ZnLXRhZzIuaHRtbAo9PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09Ci0tLSBMYXlvdXRUZXN0cy9odHRwL3Rlc3Rz L3NlY3VyaXR5L3hzc0F1ZGl0b3Ivc2NyaXB0LXRhZy1pbnNpZGUtc3ZnLXRhZzIuaHRtbAkocmV2 aXNpb24gMTEzOTE5KQorKysgTGF5b3V0VGVzdHMvaHR0cC90ZXN0cy9zZWN1cml0eS94c3NBdWRp dG9yL3NjcmlwdC10YWctaW5zaWRlLXN2Zy10YWcyLmh0bWwJKHdvcmtpbmcgY29weSkKQEAgLTks NyArOSw3IEBAIGlmICh3aW5kb3cubGF5b3V0VGVzdENvbnRyb2xsZXIpIHsKIDwvc2NyaXB0Pgog PC9oZWFkPgogPGJvZHk+Ci08aWZyYW1lIHNyYz0iaHR0cDovL2xvY2FsaG9zdDo4MDAwL3NlY3Vy aXR5L3hzc0F1ZGl0b3IvcmVzb3VyY2VzL2VjaG8taW50ZXJ0YWcucGw/Y2x1dHRlcj08ZGl2Pjxp Png8L2k+PC9kaXY+JnE9PHN2Zz48c2NyaXB0PjwhLS0mcTI9LS0+JTI2JTI0eDBhO2FsZXJ0JTI2 JTIzeDI5O1N0cmluZy5mcm9tQ2hhckNvZGUoMHg1OCwweDUzLDB4NTMpKTwvc3ZnPjwvc2NyaXB0 PiI+Cis8aWZyYW1lIHNyYz0iaHR0cDovL2xvY2FsaG9zdDo4MDAwL3NlY3VyaXR5L3hzc0F1ZGl0 b3IvcmVzb3VyY2VzL2VjaG8taW50ZXJ0YWcucGw/Y2x1dHRlcj08ZGl2PjxpPng8L2k+PC9kaXY+ JnE9PHN2Zz48c2NyaXB0PjwhLS0mcTI9LS0+JTI2JTIzeDBhJTNiYWxlcnQlMjYlMjN4MjglM2JT dHJpbmcuZnJvbUNoYXJDb2RlKDB4NTgsMHg1MywweDUzKSk8L3NjcmlwdD48L3N2Zz4iPgogPC9p ZnJhbWU+CiBFbnN1cmVzIEhUTUwgZW50aXRpZXMgYXJlIHJlY29nbml6ZWQgaW4gc2NyaXB0IGJs b2NrcyBpbiBhIGNvbnRleHQgd2hlcmUgQ0RBVEEgaXMgYWxsb3dlZCBldmVuIHdpdGggJmx0OyEt LSBjb21tZW50cyAtLSZndDsuCiA8L2JvZHk+CkluZGV4OiBMYXlvdXRUZXN0cy9odHRwL3Rlc3Rz L3NlY3VyaXR5L3hzc0F1ZGl0b3Ivc2NyaXB0LXRhZy1pbnNpZGUtc3ZnLXRhZzMuaHRtbAo9PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09Ci0tLSBMYXlvdXRUZXN0cy9odHRwL3Rlc3RzL3NlY3VyaXR5L3hzc0F1ZGl0b3Ivc2Ny aXB0LXRhZy1pbnNpZGUtc3ZnLXRhZzMuaHRtbAkocmV2aXNpb24gMTEzOTE5KQorKysgTGF5b3V0 VGVzdHMvaHR0cC90ZXN0cy9zZWN1cml0eS94c3NBdWRpdG9yL3NjcmlwdC10YWctaW5zaWRlLXN2 Zy10YWczLmh0bWwJKHdvcmtpbmcgY29weSkKQEAgLTksNyArOSw3IEBAIGlmICh3aW5kb3cubGF5 b3V0VGVzdENvbnRyb2xsZXIpIHsKIDwvc2NyaXB0PgogPC9oZWFkPgogPGJvZHk+Ci08aWZyYW1l IHNyYz0iaHR0cDovL2xvY2FsaG9zdDo4MDAwL3NlY3VyaXR5L3hzc0F1ZGl0b3IvcmVzb3VyY2Vz L2VjaG8taW50ZXJ0YWcucGw/Y2x1dHRlcj08c2NyaXB0PmFsZXJ0KDEpPC9zY3JpcHQ+JnE9PHN2 Zz48c2NyaXB0PiZxMj1hbGVydCgwKTs8L3NjcmlwdD48L3N2Zz4iPgorPGlmcmFtZSBzcmM9Imh0 dHA6Ly9sb2NhbGhvc3Q6ODAwMC9zZWN1cml0eS94c3NBdWRpdG9yL3Jlc291cmNlcy9lY2hvLWlu dGVydGFnLnBsP2NsdXR0ZXI9PHNjcmlwdD5hbGVydCgxKTwvc2NyaXB0PiZxPTxzdmc+PHNjcmlw dD4mcTI9YWxlcnQoMCk8L3NjcmlwdD48L3N2Zz4iPgogPC9pZnJhbWU+CiBFbnN1cmVzIEhUTUwg ZW50aXRpZXMgYXJlIHJlY29nbml6ZWQgaW4gc2NyaXB0IGJsb2NrcyBpbiBhIGNvbnRleHQgd2hl cmUgQ0RBVEEgaXMgYWxsb3dlZCBldmVuIHdpdGggbmVzdGVkIHNjcmlwdCBibG9ja3MuCiA8L2Jv ZHk+CkluZGV4OiBMYXlvdXRUZXN0cy9odHRwL3Rlc3RzL3NlY3VyaXR5L3hzc0F1ZGl0b3Ivc2Ny aXB0LXRhZy1pbnNpZGUtc3ZnLXRhZy5odG1sCj09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0KLS0tIExheW91dFRlc3RzL2h0 dHAvdGVzdHMvc2VjdXJpdHkveHNzQXVkaXRvci9zY3JpcHQtdGFnLWluc2lkZS1zdmctdGFnLmh0 bWwJKHJldmlzaW9uIDExMzkxOSkKKysrIExheW91dFRlc3RzL2h0dHAvdGVzdHMvc2VjdXJpdHkv eHNzQXVkaXRvci9zY3JpcHQtdGFnLWluc2lkZS1zdmctdGFnLmh0bWwJKHdvcmtpbmcgY29weSkK QEAgLTksNyArOSw3IEBAIGlmICh3aW5kb3cubGF5b3V0VGVzdENvbnRyb2xsZXIpIHsKIDwvc2Ny aXB0PgogPC9oZWFkPgogPGJvZHk+Ci08aWZyYW1lIHNyYz0iaHR0cDovL2xvY2FsaG9zdDo4MDAw L3NlY3VyaXR5L3hzc0F1ZGl0b3IvcmVzb3VyY2VzL2VjaG8taW50ZXJ0YWcucGw/cT08c3ZnPjxz Y3JpcHQ+Ly8lMjYlMjR4MGE7YWxlcnQlMjYlMjN4Mjk7U3RyaW5nLmZyb21DaGFyQ29kZSgweDU4 LDB4NTMsMHg1MykpPC9zdmc+PC9zY3JpcHQ+Ij4KKzxpZnJhbWUgc3JjPSJodHRwOi8vbG9jYWxo b3N0OjgwMDAvc2VjdXJpdHkveHNzQXVkaXRvci9yZXNvdXJjZXMvZWNoby1pbnRlcnRhZy5wbD9x PTxzdmc+PHNjcmlwdD4lMmYlMmYlMjYlMjN4MGElM2JhbGVydCUyNiUyM3gyOCUzYlN0cmluZy5m cm9tQ2hhckNvZGUoMHg1OCwweDUzLDB4NTMpKTwvc2NyaXB0Pjwvc3ZnPiI+CiA8L2lmcmFtZT4K IEVuc3VyZXMgSFRNTCBlbnRpdGllcyBhcmUgcmVjb2duaXplZCBpbiBzY3JpcHQgYmxvY2tzIGlu IGEgY29udGV4dCB3aGVyZSBDREFUQSBpcyBhbGxvd2VkLgogPC9ib2R5Pgo=