Closed Bug 801641 Opened 12 years ago Closed 12 years ago

Remove GetContextFromStack

Categories

(Core :: DOM: Core & HTML, defect)

defect
Not set
normal

Tracking

()

RESOLVED DUPLICATE of bug 747607

People

(Reporter: bholley, Assigned: bholley)

Details

(Whiteboard: [sg:dupe 747607])

Followup from bug 801241 comment 1.

In nsLocation.cpp, we do this little dance where we walk up the JS context stack looking for a JS context associated with a DOM window. This seems totally wrong IMO, since it skips things like sandbox contexts. Let's get rid of it.
jst say this should probably be s-s.
Group: core-security
IIRC I added extra check there for the sandbox and message manager contexts, but
there are still problems as Bug 801305 indicates.
Could you assign a security rating to this, Bobby?  Thanks.
I'm just going to dupe this to bug 747607, which I'd forgotten about. Same issue.
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → DUPLICATE
No longer blocks: CVE-2012-4201
Whiteboard: [sg:dupe 747607]
Group: core-security
Component: DOM → DOM: Core & HTML
You need to log in before you can comment on or make changes to this bug.