Closed
Bug 1563127
Opened 5 years ago
Closed 5 years ago
Strings (and potentially whole page) fail to render due to invalid JSON from highlights title with quotes
Categories
(Firefox :: New Tab Page, defect, P1)
Firefox
New Tab Page
Tracking
()
Tracking | Status | |
---|---|---|
firefox-esr60 | --- | unaffected |
firefox-esr68 | --- | unaffected |
firefox68 | --- | unaffected |
firefox69 | --- | verified |
People
(Reporter: Mardak, Assigned: jcarlos)
References
(Regression)
Details
(Keywords: github-merged, regression)
Attachments
(1 file)
The JSON for data-l10n-args created manually is incorrect:
<button aria-haspopup="true" data-l10n-id="newtab-menu-content-tooltip" data-l10n-args="{ "title": "Resolving Error: "Objects are not valid as a React child"" }" class="context-menu-button icon"></button>
Here's the js string value:
{ "title": "Resolving Error: "Objects are not valid as a React child"" }
This particular string injection came from
data-l10n-args={`{ "title": "${title}" }`}
We should make sure we don't allow string injection and make sure to just call stringify. And fix up all places where we do something similar.
Comment 1•5 years ago
|
||
Reporter | ||
Comment 2•5 years ago
|
||
This can be tested by creating a bookmark with double quotes in the title
Reporter | ||
Comment 3•5 years ago
|
||
Status: NEW → RESOLVED
Iteration: --- → 69.4 - Jun 24 - Jul 7
Closed: 5 years ago
status-firefox69:
--- → fixed
Keywords: github-merged
Resolution: --- → FIXED
Target Milestone: --- → Firefox 69
Comment 4•5 years ago
|
||
I have verified that this issue is no longer reproducible with the latest Firefox Nightly (69.0a1 Build ID - 20190705064618) installed, on Windows 10 x64, Arch Linux and Mac 10.14.5. Now, the strings from the bookmarks highlights that are containing double quotes in the title are successfully rendered.
Status: RESOLVED → VERIFIED
Updated•5 years ago
|
status-firefox68:
--- → unaffected
status-firefox-esr60:
--- → unaffected
status-firefox-esr68:
--- → unaffected
Updated•3 years ago
|
Has Regression Range: --- → yes
You need to log in
before you can comment on or make changes to this bug.
Description
•