Open Bug 1874397 Opened 9 months ago Updated 6 months ago

Vulnerable passwords sign and notification aren’t being synced

Categories

(Firefox :: about:logins, defect)

Product:
Firefox
Component:
about:logins
Version:
Firefox 123
Platform:
Desktop
All
Type:
defect

Tracking

()

Tracking Flags:
Tracking Status
firefox-esr115 --- affected
firefox121 --- affected
firefox122 --- affected
firefox123 --- affected

People

(Reporter: hyacoub, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [fxcm-productive-ux])

Attachments

(1 file)

vulnerable.csv
3.91 KB, text/csv
Details
Attached file vulnerable.csv

Found in

  • Firefox Nightly 123.0a1

Affected versions

  • Firefox 123.0a1
  • Firefox 122.0b8
  • Firefox 121.0.1

Tested platforms

  • Affected platforms: macOS 11.6, Windows 11 x64 and Ubuntu 20.04 x64

Steps to reproduce

  1. Go to about:logins and sign in to sync
  2. Import the CSV attached in the bug containing vulnerable passwords
  3. Open another Firefox, go to about:logins and login with the same account from step 1
  4. Observe the passwords

Expected result

  • Vulnerable passwords sign and notification should be synced.

Actual result

  • Vulnerable passwords sign and notification aren’t being synced.

Regression range

  • N/A

Additional notes

  • N/A
No longer blocks: 1324394
Blocks: 1324394
Type: enhancement → defect

:hyacoub, if you think that's a regression, could you try to find a regression range using for example mozregression?

Whiteboard: [fxcm-productive-ux]

Note: vulnerable passwords are based on breached sites and both are not synced, but rather detected on each device using Remote Services for breach data. First step would be to check what stops detection on the second system, are the times of last password update the same in both records?

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: