[Webkit-unassigned] [Bug 39330] New: For <iframe src="some.swf" sandbox="...">, we should bail out of actually loading the plug-in data as soon as possible.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue May 18 16:28:00 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=39330
Summary: For <iframe src="some.swf" sandbox="...">, we should
bail out of actually loading the plug-in data as soon
as possible.
Product: WebKit
Version: 528+ (Nightly build)
Platform: All
OS/Version: All
Status: NEW
Severity: Normal
Priority: P2
Component: Page Loading
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: beidson at apple.com
For <iframe src="some.swf" sandbox="...">, we should bail out of actually loading the plug-in data as soon as possible.
Spun off from https://bugs.webkit.org/show_bug.cgi?id=39323.
To resolve 39323, I planned on just making sure the plugin code itself is never instantiated which both prevents the described crash and prevents the security/sandboxing exploits of having the plugin code executing.
But we should actually avoid actually loading anymore of the plugin data itself once we know it violates the sandboxing flags.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list