54591 – Fix xssAuditor/iframe-injection.html

RESOLVED FIXED 54591

Fix xssAuditor/iframe-injection.html

https://bugs.webkit.org/show_bug.cgi?id=54591

Summary Fix xssAuditor/iframe-injection.html

Adam Barth

Reported 2011-02-16 14:56:48 PST

Fix xssAuditor/iframe-injection.html

Attachments
Patch (3.81 KB, patch) 2011-02-16 14:57 PST, Adam Barth	no flags	Details Formatted Diff Diff
Patch for landing (3.47 KB, patch) 2011-02-18 15:46 PST, Adam Barth	no flags	Details Formatted Diff Diff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.

Adam Barth

Comment 1 2011-02-16 14:57:54 PST

Daniel Bates

Comment 2 2011-02-16 15:02:48 PST

Comment on attachment 82705 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=82705&action=review > Source/WebCore/ChangeLog:8 > + We should block form actions. Although this technically can't be used You mean "block the iframe src attribute".

Adam Barth

Comment 3 2011-02-18 15:46:04 PST

Created attachment 83030 [details] Patch for landing

WebKit Commit Bot

Comment 4 2011-02-19 00:12:18 PST

Comment on attachment 83030 [details] Patch for landing Clearing flags on attachment: 83030 Committed r79106: <http://trac.webkit.org/changeset/79106>

WebKit Commit Bot

Comment 5 2011-02-19 00:12:23 PST

All reviewed patches have been landed. Closing bug.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware Other

OS OS X 10.5

Product WebKit

Component New Bugs

Assignee

Adam Barth

Reported

2011-02-16 14:56 PST

Modified

2011-02-19 00:12 PST History

CC List

3 users Show

URL

Keywords

Depends on

Blocks