Bug 206027

Summary: Block cross-site top-frame navigations from untrusted iframes
Product: WebKit Reporter: Chris Dumez <cdumez>
Component: Page LoadingAssignee: Chris Dumez <cdumez>
Status: RESOLVED FIXED    
Severity: Normal CC: beidson, commit-queue, dbates, esprehn+autocc, ews-watchlist, ggaren, gyuyoung.kim, kangil.han, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
See Also: https://bugs.webkit.org/show_bug.cgi?id=193076
Attachments:
Description Flags
Patch none

Chris Dumez
Reported 2020-01-09 13:17:51 PST
Block cross-site top-frame navigations from untrusted iframes.
Attachments
Patch (13.72 KB, patch)
2020-01-09 13:23 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Chris Dumez
Comment 1 2020-01-09 13:22:20 PST
<rdar://problem/58320516>
Chris Dumez
Comment 2 2020-01-09 13:23:07 PST
Created attachment 387263 [details] Patch
Geoffrey Garen
Comment 3 2020-01-09 16:55:42 PST
Comment on attachment 387263 [details] Patch r=me
WebKit Commit Bot
Comment 4 2020-01-09 19:38:50 PST
Comment on attachment 387263 [details] Patch Clearing flags on attachment: 387263 Committed r254322: <https://trac.webkit.org/changeset/254322>
WebKit Commit Bot
Comment 5 2020-01-09 19:38:52 PST
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.