Closed Bug 1703629 Opened 4 years ago Closed 4 years ago

Prompts should be automatically dismissed on page navigation

Categories

(GeckoView :: General, defect, P1)

Product:
GeckoView
Component:
General
Type:
defect

Tracking

(firefox87 wontfix, firefox88+ fixed, firefox89+ fixed)

Status:
RESOLVED FIXED
Milestone:
89 Branch
Tracking Flags:
Tracking Status
firefox87 --- wontfix
firefox88 + fixed
firefox89 + fixed

People

(Reporter: agi, Assigned: agi)

References

Details

(Keywords: sec-other, Whiteboard: [post-critsmash-triage])

Attachments

(1 file)

Bug 1703629 - Discard useless prompts.
48 bytes, text/x-phabricator-request
RyanVM
: approval-mozilla-release+
tjr
: sec-approval+
Details | Review

Right now GV prompts are alive even when the page that originates it navigates away, this is a problem as it can cause an XSS (see Bug 1701684)

Component: Security: Android → General
Product: Fenix → GeckoView
Severity: -- → S3
Priority: -- → P1

]"sec-other" because this is a task to fix another issue so we're not double-counting. I guess there could be other exploits that abuse this behavior though.

Keywords: sec-other

Will post a patch soon (hopefully tomorrow)

Assignee: nobody → agi

Comment on attachment 9214765 [details]
Bug 1703629 - Discard useless prompts.

Security Approval Request

  • How easily could an exploit be constructed based on the patch?: The patch is vague/generic enough that it shouldn't be too obvious what the problem is. It does point at prompt acting on the wrong window which is a good hint though, only if you read the code, the commit message is vague on purpose.
  • Do comments in the patch, the check-in comment, or tests included in the patch paint a bulls-eye on the security problem?: No
  • Which older supported branches are affected by this flaw?: all
  • If not all supported branches, which bug introduced the flaw?: None
  • Do you have backports for the affected branches?: Yes
  • If not, how different, hard to create, and risky will they be?:
  • How likely is this patch to cause regressions; how much testing does it need?: It might cause some regressions in prompts being discarded too eagerly, there might be cases not covered by automation where we do want to keep a prompt around when the page navigates that I didn't think of.
Attachment #9214765 - Flags: sec-approval?

Comment on attachment 9214765 [details]
Bug 1703629 - Discard useless prompts.

Approved to request uplift; if granted we can land it.

Attachment #9214765 - Flags: sec-approval?
Attachment #9214765 - Flags: sec-approval+
Attachment #9214765 - Flags: approval-mozilla-beta?

Comment on attachment 9214765 [details]
Bug 1703629 - Discard useless prompts.

This missed 88.0-rc1 already. I'll leave it on the radar in case of a respin, however.

Attachment #9214765 - Flags: approval-mozilla-beta? → approval-mozilla-release?

Discard useless prompts. r=aklotz
https://hg.mozilla.org/integration/autoland/rev/bd9e313301d575aef46dddfd51a0736e308ff5f1
https://hg.mozilla.org/mozilla-central/rev/bd9e313301d5

Group: mobile-core-security → core-security-release
Status: NEW → RESOLVED
Closed: 4 years ago
status-firefox89: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 89 Branch
Flags: qe-verify-
Whiteboard: [post-critsmash-triage]

Comment on attachment 9214765 [details]
Bug 1703629 - Discard useless prompts.

Approved for Fenix 88.1.3 & Focus 8.15.3

Attachment #9214765 - Flags: approval-mozilla-release? → approval-mozilla-release+
Group: core-security-release
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: