Bug 206027 - Block cross-site top-frame navigations from untrusted iframes
Summary: Block cross-site top-frame navigations from untrusted iframes
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: Page Loading (show other bugs)
Version: WebKit Nightly Build
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Chris Dumez
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2020-01-09 13:17 PST by Chris Dumez
Modified: 2020-01-09 19:38 PST (History)
9 users (show)

See Also:

Attachments
Patch (13.72 KB, patch)
2020-01-09 13:23 PST, Chris Dumez 		no flags Details | Formatted Diff | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Chris Dumez 2020-01-09 13:17:51 PST 
Block cross-site top-frame navigations from untrusted iframes.
Comment 1 Chris Dumez 2020-01-09 13:22:20 PST 
<rdar://problem/58320516>
Comment 2 Chris Dumez 2020-01-09 13:23:07 PST 
Created attachment 387263 [details]
Patch
Comment 3 Geoffrey Garen 2020-01-09 16:55:42 PST 
Comment on attachment 387263 [details]
Patch

r=me
Comment 4 WebKit Commit Bot 2020-01-09 19:38:50 PST 
Comment on attachment 387263 [details]
Patch

Clearing flags on attachment: 387263

Committed r254322: <https://trac.webkit.org/changeset/254322>
Comment 5 WebKit Commit Bot 2020-01-09 19:38:52 PST 
All reviewed patches have been landed.  Closing bug.