Closed Bug 306092 Opened 19 years ago Closed 19 years ago

SVG security review: onload event firing

Tracking

()

Status:

RESOLVED FIXED

People

(Reporter: jruderman, Assigned: jst)

References

Details

Jesse Ruderman

Reporter

Description

•

19 years ago

T Rowley mentioned that this is part of the SVG attack surface and could do with
a security review:

  * onload event firing

http://lxr.mozilla.org/mozilla/source/content/xml/document/src/nsXMLContentSink.cpp#1007

Jesse Ruderman

Reporter

Updated

•

19 years ago

Blocks: 306101

Johnny Stenback (:jst)

Assignee

Comment 1

•

19 years ago

I don't see any potential security problems with that code. We'll be firing
onload events, but they'll be running in the right context et al so any code
that runs should run with the right principals etc. AFAICT this is not a problem
from a security point of view.

Jesse Ruderman

Reporter

Comment 2

•

19 years ago

Thanks jst.

Assignee: general → jst

Jesse Ruderman

Reporter

Updated

•

19 years ago

Status: NEW → RESOLVED

Closed: 19 years ago

Resolution: --- → FIXED

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

SVG security review: onload event firing

Categories

(Core :: SVG, defect)

Tracking

()

People

(Reporter: jruderman, Assigned: jst)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Comment 2

Updated