Closed Bug 549349 Opened 15 years ago Closed 15 years ago

file drop URIs only accidentally work

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla1.9.3a3

Tracking Flags:

Tracking

Status

status1.9.2

---

.2-fixed

status1.9.1

---

.9-fixed

People

(Reporter: Gavin, Assigned: Gavin)

Details

(Keywords: verified1.9.0.19, verified1.9.1, verified1.9.2)

Attachments

(1 file)

patch 15 years ago :Gavin Sharp [email: gavin@gavinsharp.com] 2.46 KB, patch	mossop : review+ beltzner : approval1.9.2.2+ beltzner : approval1.9.1.9+ beltzner : approval1.9.0.19+	Details \| Diff \| Splinter Review

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Description

•

15 years ago

The security check we do in dragDropSecurityCheck doesn't explicitly allow drops of file URIs - they just happen to work because in most cases the source document is null. We should fix that to avoid problems in the future.

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Comment 2

•

15 years ago

Attached patch patch — Details — Splinter Review

Assignee: nobody → gavin.sharp

Status: NEW → ASSIGNED

Attachment #429551 - Flags: review?(dtownsend)

Dave Townsend [:mossop]

Updated

•

15 years ago

Attachment #429551 - Flags: review?(dtownsend) → review+

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Comment 3

•

15 years ago

https://hg.mozilla.org/mozilla-central/rev/66b74d46682e

Status: ASSIGNED → RESOLVED

Closed: 15 years ago

Resolution: --- → FIXED

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Updated

•

15 years ago

Target Milestone: --- → mozilla1.9.3a2

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Updated

•

15 years ago

Target Milestone: mozilla1.9.3a2 → mozilla1.9.3a3

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Comment 4

•

15 years ago

Comment on attachment 429551 [details] [diff] [review] patch Wouldn't hurt to get this on branches too.

Attachment #429551 - Flags: approval1.9.2.2?

Attachment #429551 - Flags: approval1.9.1.9?

Attachment #429551 - Flags: approval1.9.0.19?

Mike Beltzner [:beltzner, not reading bugmail]

Comment 5

•

15 years ago

Comment on attachment 429551 [details] [diff] [review] patch a=beltzner for 1.9.2.2, 1.9.1.9. 1.9.0.19

Attachment #429551 - Flags: approval1.9.2.2?

Attachment #429551 - Flags: approval1.9.2.2+

Attachment #429551 - Flags: approval1.9.1.9?

Attachment #429551 - Flags: approval1.9.1.9+

Attachment #429551 - Flags: approval1.9.0.19?

Attachment #429551 - Flags: approval1.9.0.19+

:Gavin Sharp [email: gavin@gavinsharp.com]

Assignee

Comment 6

•

15 years ago

1.9.2: https://hg.mozilla.org/releases/mozilla-1.9.2/rev/82fa604cdf23 1.9.1: https://hg.mozilla.org/releases/mozilla-1.9.1/rev/ff4a52b1c2a4 1.9.0: mozilla/toolkit/content/nsDragAndDrop.js 1.11

status1.9.1: --- → .9-fixed

status1.9.2: --- → .2-fixed

Keywords: fixed1.9.0.19

Tony Chung [:tchung]

Comment 7

•

15 years ago

How can qa verify this? also, are there unit tests?

Tony Chung [:tchung]

Comment 8

•

15 years ago

Patch was fixed in another bug that has been marked verified on verified1.9.0.19, verified1.9.1, verified1.9.2. resolving here also.

Keywords: fixed1.9.0.19 → verified1.9.0.19, verified1.9.1, verified1.9.2

You need to log in before you can comment on or make changes to this bug.

Bugzilla

file drop URIs only accidentally work

Categories

(Core :: DOM: Copy & Paste and Drag & Drop, defect)

Tracking

()

People

(Reporter: Gavin, Assigned: Gavin)

References

Details

(Keywords: verified1.9.0.19, verified1.9.1, verified1.9.2)

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 2

Updated

Comment 3

Updated

Updated

Comment 4

Comment 5

Comment 6

Comment 7

Comment 8

Attachment

General

Description

File Name

Content Type