[webkit-changes] [WebKit/WebKit] fdb2c9: Updating layout should not execute arbitrary scripts
Ryosuke Niwa
noreply at github.com
Thu May 11 13:28:46 PDT 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: fdb2c927fc43b71ccfb39e21ff28311d7a66370e
https://github.com/WebKit/WebKit/commit/fdb2c927fc43b71ccfb39e21ff28311d7a66370e
Author: Ryosuke Niwa <rniwa at webkit.org>
Date: 2023-05-11 (Thu, 11 May 2023)
Changed paths:
M Source/WebCore/dom/Document.cpp
M Source/WebCore/page/LocalFrameViewLayoutContext.cpp
Log Message:
-----------
Updating layout should not execute arbitrary scripts
https://bugs.webkit.org/show_bug.cgi?id=256296
Reviewed by Simon Fraser.
Deploy ScriptDisallowedScope for the entirety of Document::updateLayout
and LocalFrameViewLayoutContext::performLayout.
* Source/WebCore/dom/Document.cpp:
(WebCore::isSafeToUpdateLayout): Deleted.
(WebCore::Document::updateLayout):
* Source/WebCore/page/LocalFrameViewLayoutContext.cpp:
(WebCore::LocalFrameViewLayoutContext::performLayout):
Canonical link: https://commits.webkit.org/263983@main
More information about the webkit-changes
mailing list