[tor-bugs] #29733 [Applications/Tor Browser]: Disable NoSript XSS protection for now due to bug 1532530

Tor Bug Tracker & Wiki blackhole at torproject.org
Tue Mar 12 15:12:56 UTC 2019


#29733: Disable NoSript XSS protection for now due to bug 1532530
---------------------------------------------+-----------------------------
 Reporter:  gk                               |          Owner:  tbb-team
     Type:  defect                           |         Status:
                                             |  needs_review
 Priority:  Very High                        |      Milestone:
Component:  Applications/Tor Browser         |        Version:
 Severity:  Normal                           |     Resolution:
 Keywords:  noscript, TorBrowserTeam201903R  |  Actual Points:
Parent ID:                                   |         Points:
 Reviewer:                                   |        Sponsor:
---------------------------------------------+-----------------------------

Comment (by gk):

 Giorgio: please let me know what your plans/timeline for the workaround is
 if you know that already. I suspect we want to start building the new Tor
 Browser tomorrow and I think the issue in this bug warrants some action.
 Thus, we'd like to have some help for the OnionShare/SecureDrop users in
 place, say, by next Tuesday/Wednesday (be it either by the envisioned
 patch in this bug or a different workaround). Thanks!

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29733#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list