Closed Bug 1642021 Opened 4 years ago Closed 4 years ago

Rendering bug may render content to wrong tab.

Categories

(Core :: Graphics, defect)

defect
Not set
normal

Tracking

()

RESOLVED WORKSFORME

People

(Reporter: tenttipinko, Unassigned)

References

()

Details

(Keywords: reporter-external, Whiteboard: [reporter-external] [client-bounty-form] [verif?])

Attachments

(1 file)

Noticed this bug after i updated windows to v.2004
I'm on a dual monitor setup. Main is 1080p and secondary is 4k.
I usually have at least 2 firefox windows open. One for each monitor.
If i watch twitch for example in my 4k monitor and surf on my 1080p monitor the surfing tab gets render issues - especially while scrolling.
The security vulnerability comes when it renders parts of the other monitor's tab sometimes.

I don't think it needs to be twitch or some video playing on the other monitor - but it seems to make it worse.

Attached is a obs-captured video showing how twitch from other window gets partly rendered on the other window(on the other monitor)
(only small flashes. but still sensitive information may leak. And it's really annoying in any case)

The url given is the url where i noticed biggest rendering issues. It happens in facebook, reddit etc..

specs:
Windows 64bit v.2004
i7-7700k
gtx-1080ti
16gb ram
ssd

Flags: sec-bounty?
Attached video firefox-bug2.mp4

Further investigation:
If i have youtube open on the 4k monitor it doesn't seem to make the render bugs - unless i'm hovering over the video or the youtube controls... or scrolling on youtube tab.

Twitch makes the bug quite constant. Probably because of the new messages which gets rendered or something...

Group: firefox-core-security → gfx-core-security
Type: task → defect
Component: Security → Graphics
Product: Firefox → Core

It also seems pretty non-existent(if existent at all) on 1080p@60hz on main monitor. 1080p@240hz is my normal.

(In reply to tenttipinko from comment #3)

It also seems pretty non-existent(if existent at all) on 1080p@60hz on main monitor. 1080p@240hz is my normal.

the second monitor is 4k@60hz so that maybe reason why no rendering bugs happens there

Further testing:
I don't think you need a second monitor.
2 firefox windows on the same 1080p screen side by side seems to be problematic too. at least on high refresh rate display

78.0b1 seems so far fixed this.

This sounds like a visual glitch, but since they're both your monitors and it's a visual issue (the wrong display isn't actually part of the web content where a malicious site could capture it) I'm not seeing how this is a security vulnerability that needs to be hidden.

If 78.0b1 fixed it what version did you see it on? 77 Betas? Ever on a Release version? These could be artifacts from our switch to WebRender, and for some range of versions it's been held back and not released because it's a work in progress (but I don' t know exactly which versions for your set of graphics drivers).

Flags: needinfo?(tenttipinko)
Status: UNCONFIRMED → RESOLVED
Closed: 4 years ago
Resolution: --- → WORKSFORME

I've not been on the release versions. But yea haven't seen the bug come back after 78.0b1.

Back to how the thing could be a security vulnerability:
Imagine being a store/venue owner and you have other monitors showing whatever stuff(on firefox) to clients... and at the same time you want to login into some admin interface on the monitor not seen by customers. There could sensitive information leak.

Flags: needinfo?(tenttipinko)

(In reply to tenttipinko from comment #10)

I've not been on the release versions. But yea haven't seen the bug come back after 78.0b1.

Back to how the thing could be a security vulnerability:
Imagine being a store/venue owner and you have other monitors showing whatever stuff(on firefox) to clients... and at the same time you want to login into some admin interface on the monitor not seen by customers. There could sensitive information leak.

That is conceivable, but this scenario would be considered a low severity issue and not eligible for a bounty.

Flags: sec-bounty? → sec-bounty-
Group: gfx-core-security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: