Closed
Bug 664737
Opened 14 years ago
Closed 13 years ago
history.next is only protected by CAPS prefs
Categories
(Core :: DOM: Core & HTML, defect)
Tracking
()
RESOLVED
FIXED
mozilla12
Tracking | Status | |
---|---|---|
firefox-esr10 | --- | wontfix |
People
(Reporter: bzbarsky, Assigned: mrbkap)
References
Details
(Whiteboard: [sg:nse])
Attachments
(1 file)
813 bytes,
patch
|
bzbarsky
:
review+
mrbkap
:
checkin+
|
Details | Diff | Splinter Review |
Bug 619359 added security checks to GetCurrent and GetPrevious but NOT GetNext. It's ok for now because this is not quickstubbed and CAPS saves us, but was there a reason to not add the security check to GetNext?
Comment 1•14 years ago
|
||
Hmm, not that I can think of... Blake?
Assignee: nobody → mrbkap
Whiteboard: [sg:nse]
Assignee | ||
Comment 2•13 years ago
|
||
Ick, I must have missed that somehow.
Assignee | ||
Comment 3•13 years ago
|
||
Attachment #590692 -
Flags: review?(bzbarsky)
Reporter | ||
Comment 4•13 years ago
|
||
Comment on attachment 590692 [details] [diff] [review]
Fix
r=me
Attachment #590692 -
Flags: review?(bzbarsky) → review+
Assignee | ||
Comment 5•13 years ago
|
||
Comment on attachment 590692 [details] [diff] [review]
Fix
https://hg.mozilla.org/integration/mozilla-inbound/rev/4a93a7908feb (with a mochitest, even).
Attachment #590692 -
Flags: checkin+
Comment 6•13 years ago
|
||
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla12
Updated•13 years ago
|
status-firefox-esr10:
--- → wontfix
Updated•10 years ago
|
Group: core-security
Updated•6 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•