Bug 54591

Summary: Fix xssAuditor/iframe-injection.html
Product: WebKit Reporter: Adam Barth <abarth>
Component: New BugsAssignee: Adam Barth <abarth>
Status: RESOLVED FIXED    
Severity: Normal CC: commit-queue, dbates, eric
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Other   
OS: OS X 10.5   
Attachments:
Description Flags
Patch
none
Patch for landing none

Description Adam Barth 2011-02-16 14:56:48 PST
Fix xssAuditor/iframe-injection.html
Comment 1 Adam Barth 2011-02-16 14:57:54 PST
Created attachment 82705 [details]
Patch
Comment 2 Daniel Bates 2011-02-16 15:02:48 PST
Comment on attachment 82705 [details]
Patch

View in context: https://bugs.webkit.org/attachment.cgi?id=82705&action=review

> Source/WebCore/ChangeLog:8
> +        We should block form actions.  Although this technically can't be used

You mean "block the iframe src attribute".
Comment 3 Adam Barth 2011-02-18 15:46:04 PST
Created attachment 83030 [details]
Patch for landing
Comment 4 WebKit Commit Bot 2011-02-19 00:12:18 PST
Comment on attachment 83030 [details]
Patch for landing

Clearing flags on attachment: 83030

Committed r79106: <http://trac.webkit.org/changeset/79106>
Comment 5 WebKit Commit Bot 2011-02-19 00:12:23 PST
All reviewed patches have been landed.  Closing bug.