[tor-bugs] #15502 [Tor Browser]: URL.createObjectURL() considered harmful
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Apr 20 13:41:11 UTC 2015
#15502: URL.createObjectURL() considered harmful
-------------------------+-------------------------------------------------
Reporter: | Owner: arthuredelstein
mikeperry | Status: needs_review
Type: defect | Milestone:
Priority: major | Version:
Component: Tor | Keywords: tbb-linkability, tbb-newnym,
Browser | tbb-4.5-alpha, TorBrowserTeam201504R,
Resolution: | MikePerry201504R
Actual Points: | Parent ID:
Points: |
-------------------------+-------------------------------------------------
Comment (by mcs):
Replying to [comment:19 arthuredelstein]:
> I looked into how to fix this patch, but the Web Worker case is quite
complex. Also I feel much less comfortable with GetDocumentFromCaller()
now that it's already failed once. So for now (for Firefox 31) I would be
in favor of disabling blob URLs in content. Here's a patch that does that:
> https://github.com/arthuredelstein/tor-
browser/commit/dfbd283c17225d79e1ff82bb933c59a77853ddf3
The patch looks OK, at least based on my reading of
https://developer.mozilla.org/en-
US/docs/Mozilla/WebIDL_bindings#ChromeOnly
I assume [ChromeOnly] works correctly since it is fairly widely used by
Mozilla.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15502#comment:20>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list