Bug 152872

Summary: [XSS Auditor] Partial bypass when web server collapses path components
Product: WebKit Reporter: Daniel Bates <dbates>
Component: WebCore Misc.Assignee: Daniel Bates <dbates>
Status: RESOLVED FIXED    
Severity: Normal CC: ap, ryanhaddad
Priority: P2 Keywords: BlinkMergeCandidate, XSSAuditor
Version: WebKit Local Build   
Hardware: All   
OS: All   
See Also: https://bugs.webkit.org/show_bug.cgi?id=153250
Attachments:
Description Flags
Patch bfulgham: review+, bfulgham: commit-queue-

Daniel Bates
Reported 2016-01-07 17:03:07 PST
Blink Issue: <https://code.google.com/p/chromium/issues/detail?id=344146>
Attachments
Patch (9.50 KB, patch)
2016-01-07 17:04 PST, Daniel Bates 		bfulgham: review+
bfulgham: commit-queue-
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Daniel Bates
Comment 1 2016-01-07 17:04:27 PST
Created attachment 268510 [details] Patch
Brent Fulgham
Comment 2 2016-01-13 13:00:50 PST
Comment on attachment 268510 [details] Patch r=me. Please land manually, as the patch does not seem to apply cleanly.
Daniel Bates
Comment 3 2016-01-14 13:38:05 PST
Committed r195073: <http://trac.webkit.org/changeset/195073>
Note You need to log in before you can comment on or make changes to this bug.