[Webkit-unassigned] [Bug 18762] Canvas toDataURL in iframes allows reading different-origin images
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Apr 26 18:23:26 PDT 2008
http://bugs.webkit.org/show_bug.cgi?id=18762
sam at webkit.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Group|Security-Sensitive |
------- Comment #2 from sam at webkit.org 2008-04-26 18:23 PDT -------
Turns out this is not a canvas tainting bug. The issue is that the images are
not being drawn to the canvas at all, and thus no canvas tainting is taking
place. The data: urls that are being produced are of the empty canvas, not
including the yellow image.
Removing from the security component.
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list