[tor-bugs] #5742 [Firefox Patch Issues]: Fix image cache url isolation
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Wed Jul 25 23:59:34 UTC 2012
#5742: Fix image cache url isolation
----------------------------------------------+-----------------------------
Reporter: mikeperry | Owner: mikeperry
Type: defect | Status: new
Priority: major | Milestone:
Component: Firefox Patch Issues | Version:
Keywords: tbb-linkability, MikePerry201207 | Parent:
Points: 20 | Actualpoints: 6
----------------------------------------------+-----------------------------
Comment(by mikeperry):
Replying to [comment:9 mikeperry]:
> See also the patch in #3246 to verify documentURI assumptions.
Ok, so this patch actually relies on
nsCookiePermission::GetOriginatingURI(), which extracts the top-level
window URI directly from a channel using the loadgroup's notification
callbacks and like 4 or 5 other codepaths.. Surprisingly, it does *not*
use nsIHttpChannelInternal.documentURI, even though it QI's
nsIHttpChannelInternal to check for an unrelated sketchy bypass of the
third party cookie pref..
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5742#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list