Open Bug 1494457 Opened 6 years ago Updated 2 years ago

PBackgroundLocalStorageCache, PBackgroundSDBConnection, PCacheStorage can be constructed with fraudulent principal, origin, private browsing id

Tracking

()

Status:

NEW

Project Flags:

Fission Milestone

Future

People

(Reporter: tjr, Unassigned)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

Tom Ritter [:tjr] (OOTO until mid-August)

Reporter

Description

•

6 years ago

In PBackground.ipdl, the following methods accept a principal, origin, and/or privatebrowsingId and uses it to construct actors which contains those values as members.

- PBackgroundSDBConnection
- PBackgroundLocalStorageCache
- PCacheStorage

A Rogue Content Process could supply fraudulent values to these Actor Constructor and operate on another origin's data. The supplied principal/etc should be checked to ensure that the supplied data is valid for this content process.

Tom Ritter [:tjr] (OOTO until mid-August)

Reporter

Updated

•

6 years ago

Updated

•

6 years ago

Priority: -- → P3

Chris Peterson [:cpeterson]

Comment 1

•

5 years ago

This bug is not a Fission MVP blocker.

Fission Milestone: --- → Future

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

PBackgroundLocalStorageCache, PBackgroundSDBConnection, PCacheStorage can be constructed with fraudulent principal, origin, private browsing id

Categories

(Core :: Storage: localStorage & sessionStorage, enhancement, P3)

Tracking

()

People

(Reporter: tjr, Unassigned)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Comment 1

Updated