Closed
Bug 762009
Opened 13 years ago
Closed 13 years ago
Investigate if mozIDOMApplicationMgmt implementation leads to security bugs
Categories
(Core :: DOM: Core & HTML, defect)
Tracking
()
RESOLVED
FIXED
People
(Reporter: smaug, Assigned: smaug)
Details
(Keywords: sec-audit)
Currently mozIDOMApplicationMgmt is implemented in JS, but it inherits
builtinclass interface nsIDOMEventTarget.
Code using nsIDOMEventTarget excepts it to be C++. I wonder if it is possible
that the current setup leads to some random crashes.
|
||
Updated•13 years ago
|
Component: Web Apps → DOM: Mozilla Extensions
Product: Firefox → Core
QA Contact: webapps → general
|
Assignee | |
Comment 1•13 years ago
|
||
(In reply to Olli Pettay [:smaug] from comment #0)
> excepts
expects
|
||
Comment 2•13 years ago
|
||
Olli: who should investigate this? If not you please find someone, if this is assigned to nobody it'll just rot.
Assignee: nobody → bugs
Keywords: sec-audit
|
|
Assignee | |
Comment 3•13 years ago
|
||
(In reply to Daniel Veditz [:dveditz] from comment #2)
> Olli: who should investigate this? If not you please find someone, if this
> is assigned to nobody it'll just rot.
I'll look at this some more.
|
|
Assignee | |
Comment 4•13 years ago
|
||
The only problematic cases I found are chrome only.
nsEventListenerService::Add/RemoveSystemEventListener,
nsEventListenerService::HasListenersFor,
nsEventListenerService::GetEventTargetChainFor
nsDocShell::Get/SetChromeEventHandler
Marking this WONTFIX, since mozIDOMApplicationMgmt was changed to not inherit nsIDOMEventTarget.
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → WONTFIX
|
|
||
Comment 5•13 years ago
|
||
Calling it "fixed" because you did do the investigation this bug was filed to track.
Group: core-security
Resolution: WONTFIX → FIXED
|
||
Updated•12 years ago
|
Component: DOM: Mozilla Extensions → DOM
|
|
||
Updated•6 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•