Closed Bug 265728 Opened 20 years ago Closed 20 years ago

Synthetic middle-click event can paste

Categories

(Core :: DOM: Editor, defect)

Product:
Core
Component:
DOM: Editor
Version:
1.7 Branch
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: jruderman, Assigned: mozeditor)

Details

(4 keywords)

Attachments

(2 files)

demo
352 bytes, text/html
Details
Fix
1.31 KB, patch
bryner
: review+
bryner
: superreview+
asa
: approval-aviary+
Details | Diff | Splinter Review
Steps to reproduce on Windows: 1. Go to about:config and middlemouse.paste to true. 2. Copy something to the Windows clipboard. 3. Load the testcase. Result: the contents of your clipboard are pasted once a second. On Linux, I imagine this would paste the X primary selection rather than the contents of the clipboard (without any hidden pref changes).
Flags: blocking-aviary1.0?
Whiteboard: security
Attached file demo
Lest people discount this bug due to the first step being "change prefs", Unix and OS2 versions ship with true already the default value.
Whiteboard: security → [sg:fix]security
Attached patch FixSplinter Review
Attachment #163189 - Flags: superreview?(bryner)
Attachment #163189 - Flags: review?(bryner)
Comment on attachment 163189 [details] [diff] [review] Fix a=asa for aviary checkin pending reviews.
Attachment #163189 - Flags: approval-aviary+
Attachment #163189 - Flags: superreview?(bryner)
Attachment #163189 - Flags: superreview+
Attachment #163189 - Flags: review?(bryner)
Attachment #163189 - Flags: review+
Flags: blocking-aviary1.0? → blocking-aviary1.0+
Keywords: fixed-aviary1.0
Fixed on 1.7 and trunk too (a=asa over IRC).
Status: NEW → RESOLVED
Closed: 20 years ago
Keywords: fixed1.7.x
Resolution: --- → FIXED
on linux (2004102409-0.9+) this seems to behave itself now.
Security Advisories published, clearing confidential flag
Group: security
Keywords: csec-disclosure, sec-moderate
Whiteboard: [sg:fix]security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: