Pier Angelo Vendrame pushed to branch mullvad-browser-149.0a1-16.0-2 at The Tor Project / Applications / Mullvad Browser
Commits:
-
1beb74fb
by Pier Angelo Vendrame at 2026-04-16T19:38:10+02:00
1 changed file:
Changes:
| ... | ... | @@ -1104,6 +1104,12 @@ nsresult nsScriptSecurityManager::CheckLoadURIFlags( |
| 1104 | 1104 | return NS_OK;
|
| 1105 | 1105 | }
|
| 1106 | 1106 | } else if (targetScheme.EqualsLiteral("chrome")) {
|
| 1107 | + nsAutoCString path;
|
|
| 1108 | + if (NS_SUCCEEDED(aTargetURI->GetPathQueryRef(path)) &&
|
|
| 1109 | + StringBeginsWith(path, "/locale/"_ns)) {
|
|
| 1110 | + return NS_ERROR_DOM_BAD_URI;
|
|
| 1111 | + }
|
|
| 1112 | + |
|
| 1107 | 1113 | // Allow the load only if the chrome package is allowlisted.
|
| 1108 | 1114 | nsCOMPtr<nsIXULChromeRegistry> reg(
|
| 1109 | 1115 | do_GetService(NS_CHROMEREGISTRY_CONTRACTID));
|