PDF draw feature cannot hide texts behind it
Categories
(Firefox :: PDF Viewer, defect)
Tracking
()
People
(Reporter: renatoyamane, Unassigned)
References
Details
(Keywords: reporter-external)
Attachments
(1 file)
|
29.12 KB,
application/pdf
|
Details |
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0
Steps to reproduce:
-
Open a PDF file on Firefox 126.0 (Windows 11);
-
Use the draw feature to edit the PDF, hidden a text;
-
Save it;
-
Open it again, use CTRL+A to select the content of the PDF, then copy the text and paste it in somewhere (for example: notepad).
You will notice the text, supposed to be hidden, can be revealed when you paste the content.
Use the PDF attached to reproduce the problem.
Actual results:
If you use the draw feature to hide a sensitive information, the user can still now the text by just using the "copy and paste".
Expected results:
The text behind the draw/brush should not be revealed.
This is a security issue, because users can have sensitive informations revealed.
|
||
Updated•5 months ago
|
|
||
Comment 2•5 months ago
|
||
Comment from OP from the dupe suggests:
Firefox should MERGE all layers before saving the PDF.
|
Reporter | |
Comment 4•5 months ago
|
||
I received 2 emails from this bug report at 12.39pm (GMT +1) and 1.34pm (GMT +1) but I can't see the content because it says:
"... This email would have contained sensitive information, but you have not set a PGP/GPG key or SMIME certificate in the "Secure Mail" section of your user preferences ..."
If it's something for me, please sent again because I added the PGP/GPG key just a few minutes ago.
|
||
Comment 5•5 months ago
|
||
The email you received doesn't contain any sensitive information which could leak (it's a security bug). But if you want to receive the encrypted message it's possible in changing a pref.
That said, I agree with you that people mustn't redact a pdf in using a tool for drawing on it, but what can we do when the users misuse a tool ?
Did you see something in Firefox which could let the user thinks that this drawing tool is a redact one ?
|
|
Reporter | |
Comment 6•5 months ago
|
||
Hi, If users encounter a brush tool that visually indicates they can hide a content, they should expect the text beneath the brushed area to be permanently concealed.
A solution for this can be merging all layers before saving the PDF, so we cannot have access to the content underneath the brushed area.
|
||
Comment 7•5 months ago
|
||
Might be good to make clearer, but is not a security vulnerability that needs to be hidden to protect users. In fact, the more users know about this the safer they will be.
|
||
Comment 8•5 months ago
|
||
We are planning to work on a redact feature in the future. Having a specific redact feature will help make it clearer for users that they can't just "draw" on top of text in order to hide it.
I'm not sure there are ways to fix this bug, so I'm going to close it as WONTFIX.
|
|
Reporter | |
Comment 9•5 months ago
|
||
(In reply to Marco Castelluccio [:marco] from comment #8)
[...]they can't just "draw" on top of text in order to hide it.
Yes, but they are doing.
The common sense is when we draw something over a text, nobody will expect that the text behind the draw can be revealed.
Thanks
|
|
||
Comment 10•5 months ago
|
||
(In reply to Renato S. Yamane from comment #9)
(In reply to Marco Castelluccio [:marco] from comment #8)
[...]they can't just "draw" on top of text in order to hide it.
Yes, but they are doing.
The common sense is when we draw something over a text, nobody will expect that the text behind the draw can be revealed.Thanks
Unfortunately that's a common misconception and it is the same behavior across all PDF editors, I'm not sure there's anything we can do to improve the situation other than implementing a specific redact tool.
|
|
||
Updated•4 months ago
|
|
||
Updated•4 months ago
|
|
|
||
Updated•4 months ago
|
Description
•