Closed
Bug 801641
Opened 12 years ago
Closed 12 years ago
Remove GetContextFromStack
Categories
(Core :: DOM: Core & HTML, defect)
Core
DOM: Core & HTML
Tracking
()
RESOLVED
DUPLICATE
of bug 747607
People
(Reporter: bholley, Assigned: bholley)
Details
(Whiteboard: [sg:dupe 747607])
Followup from bug 801241 comment 1. In nsLocation.cpp, we do this little dance where we walk up the JS context stack looking for a JS context associated with a DOM window. This seems totally wrong IMO, since it skips things like sandbox contexts. Let's get rid of it.
Comment 2•12 years ago
|
||
IIRC I added extra check there for the sandbox and message manager contexts, but there are still problems as Bug 801305 indicates.
Assignee | ||
Updated•12 years ago
|
Blocks: CVE-2012-4201
Comment 3•12 years ago
|
||
Could you assign a security rating to this, Bobby? Thanks.
Assignee | ||
Comment 4•12 years ago
|
||
I'm just going to dupe this to bug 747607, which I'd forgotten about. Same issue.
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → DUPLICATE
Assignee | ||
Updated•12 years ago
|
No longer blocks: CVE-2012-4201
Updated•12 years ago
|
Whiteboard: [sg:dupe 747607]
Updated•9 years ago
|
Group: core-security
Updated•6 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•