Closed
Bug 1957355
Opened 1 month ago
Closed 12 days ago
No referrer and cookie access for resources injected by content-scripts
Categories
(Core :: Privacy: Anti-Tracking, enhancement)
Core
Privacy: Anti-Tracking
Tracking
()
RESOLVED
FIXED
139 Branch
| Tracking | Status | |
|---|---|---|
| firefox139 | --- | fixed |
People
(Reporter: baku, Assigned: baku)
References
Details
(Whiteboard: [addons-jira])
Attachments
(2 files)
Injected resources can be used as a tracking vector. This bug is about:
- remove the referrer header for those resources
- no cookie access
- add a pref to turn on/off this isolation.
|
Assignee | |
Comment 1•1 month ago
|
||
|
||
Updated•27 days ago
|
Attachment #9475670 -
Attachment description: Bug 1957355 - No referrer and cookie access for resources injected by content-scripts, r?timhuang → Bug 1957355 - No referrer for resources injected by content-scripts, r?timhuang
|
|
Assignee | |
Comment 2•27 days ago
|
||
|
|
Assignee | |
Updated•26 days ago
|
Whiteboard: [addons-jira]
|
||
Updated•26 days ago
|
Pushed by amarchesini@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/04eed8759454
No referrer for resources injected by content-scripts, r=timhuang,necko-reviewers,anti-tracking-reviewers,twisniewski,jesup,robwu
https://hg.mozilla.org/integration/autoland/rev/ff5ea82f6090
No storage access for resources injected by content-scripts, r=timhuang,necko-reviewers,devtools-reviewers,anti-tracking-reviewers,nchevobbe,kershaw
|
||
Comment 4•12 days ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/04eed8759454
https://hg.mozilla.org/mozilla-central/rev/ff5ea82f6090
Status: NEW → RESOLVED
Closed: 12 days ago
status-firefox139:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 139 Branch
|
||
Updated•17 hours ago
|
QA Whiteboard: [qa-triage-done-c140/b139]
You need to log in
before you can comment on or make changes to this bug.
Description
•