Closed Bug 1869202 Opened 3 months ago Closed 3 months ago

taint filter if colour is currentColor

Categories

(Core :: SVG, defect)

defect

Tracking

()

RESOLVED FIXED
122 Branch
Tracking Status
relnote-firefox --- 122+
firefox122 --- fixed

People

(Reporter: longsonr, Assigned: longsonr)

Details

Attachments

(1 file)

Assignee: nobody → longsonr
Status: NEW → ASSIGNED
Pushed by longsonr@gmail.com:
https://hg.mozilla.org/integration/autoland/rev/25a3d6c779f3
taint filter if input is currentColor r=emilio
Status: ASSIGNED → RESOLVED
Closed: 3 months ago
Resolution: --- → FIXED
Target Milestone: --- → 122 Branch
Flags: in-testsuite+

Release Note Request (optional, but appreciated)
[Why is this notable]:
This is a privacy improvement.
[Affects Firefox for Android]:
yes
[Suggested wording]:
To further protect user's privacy Firefox now taints filters that use currentColor as an input. Since color can be set by the :visited pseudo selector, it potentially contains privacy-sensitive information and therefore these primitives must be marked as tainted. This means that if you use such a filter you won't be able to read the filter output from canvas.
[Links (documentation, blog post, etc)]:
https://www.w3.org/TR/filter-effects-1/#tainted-filter-primitives

relnote-firefox: --- → ?
You need to log in before you can comment on or make changes to this bug.