Closed Bug 306094 Opened 20 years ago Closed 14 years ago

SVG security review: <svg:script> element

Categories

(Core :: SVG, defect)

Product:
Core
Component:
SVG
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WONTFIX

People

(Reporter: jruderman, Unassigned)

References

Details

T Rowley mentioned that this is part of the SVG attack surface and could do with a security review: * <script> element - nsSVGScriptElement.cpp http://lxr.mozilla.org/mozilla/source/content/svg/content/src/nsSVGScriptElement.cpp
Blocks: 306101
So who would do this review? Is it something we should do at this point?
Assignee: general → nobody
QA Contact: ian → general
Feel free to reopen if this is going to actually happen.
Status: NEW → RESOLVED
Closed: 14 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.