Closed
Bug 7255
Opened 25 years ago
Closed 21 years ago
Review new DOM APIs
Categories
(Core :: Security, defect, P3)
Core
Security
Tracking
()
RESOLVED
FIXED
People
(Reporter: norrisboyd, Assigned: security-bugs)
References
Details
(Whiteboard: [DONTTEST][rtm-])
Entering all security bugs and tasks for SeaMonkey into Buzilla for schedule
tracking.
Reporter | ||
Updated•25 years ago
|
Target Milestone: M8
Updated•25 years ago
|
Status: NEW → ASSIGNED
Target Milestone: M8 → M10
Comment 1•25 years ago
|
||
Definitely won't get to this for M8. Probably really an M10 thing, actually.
Updated•25 years ago
|
Target Milestone: M10 → M12
Comment 2•25 years ago
|
||
We should probably do at least a cursory look at this before beta
Updated•25 years ago
|
Whiteboard: [DONTTEST]
Comment 4•25 years ago
|
||
Marking [DONTTEST].
Updated•25 years ago
|
Target Milestone: M13 → M14
Comment 5•25 years ago
|
||
Mass-moving excess bugs to M14
Comment 6•25 years ago
|
||
Bulk moving old [donttest] code to new donttest keyword. Sorry for the spam!
Keywords: donttest
Comment 7•25 years ago
|
||
I don't think I'll be spending time on this this week so this won't be done for
M14.
Target Milestone: M14 → M15
Bulk moving all Browser Security bugs to new Security: General component. The
previous Security component for Browser will be deleted.
Component: Security → Security: General
Comment 9•25 years ago
|
||
Mass-moving bugs out of M15 that I won't get to. Will refit individual
milestones after moving them.
Target Milestone: M15 → M16
Updated•24 years ago
|
QA Contact: dshea → junruh
Comment 10•24 years ago
|
||
Changing Qa contact to myself.
Comment 12•24 years ago
|
||
This is really just a placeholder for sitting down and looking at the DOM Level
1 and 2 api's from a security standpoint to make sure we're covering any obvious
exploits. Since I'm not as involved in security anymore I'm going to reassign
this over to mstoltz. If Mitch thinks this task has been accomplished already
then this can be closed. If not then it still needs to be done. I'll probably
be less involved in it so I'll let Mitch make the call.
Assignee: joki → mstoltz
Status: ASSIGNED → NEW
Assignee | ||
Comment 13•24 years ago
|
||
Still worth taking a look, I think. Should we meet and talk these over?
Status: NEW → ASSIGNED
Assignee | ||
Comment 15•24 years ago
|
||
I'd like to have a meeting or else launch an informal effort on this, as Vidur,
Guninski, and I continue to discover exploits in the DOM. Any suggestions on how
to attack this? Is a systematic security review feasible for PR3, or am I
dreaming?
Assignee | ||
Comment 16•24 years ago
|
||
Marking nsbeta3 because it would be nice to do this soon. May not happen though,
it looks kind of involved.
Keywords: nsbeta3
Assignee | ||
Comment 17•24 years ago
|
||
Adding rtm keyword for security reviews.
Comment 18•24 years ago
|
||
mstoltz, is there any way that anyone could help with this?
Whiteboard: [DONTTEST] → [DONTTEST][need info]
Assignee | ||
Comment 19•24 years ago
|
||
This is ongoing and can be minus'd.
Comment 21•24 years ago
|
||
PDT marking [rtm-] for this to-do list. If any serious bugs crop up as a result
of this testing, please nominate them.
Whiteboard: [DONTTEST][need info] → [DONTTEST][rtm-]
Comment 23•24 years ago
|
||
Milestone 0.8 has been released. We should either resolve this bug or update its
milestone.
Updated•24 years ago
|
Target Milestone: M17 → ---
Assignee | ||
Comment 24•24 years ago
|
||
Mass adding mozilla0.9 keyword (mass changing milestone doesn't seem to work).
Keywords: mozilla0.9
Assignee | ||
Comment 25•24 years ago
|
||
Mass changing milestone to Moz1.0 - stuff targeted for late spring/early summer.
Target Milestone: --- → mozilla1.0
Updated•23 years ago
|
OS: Windows NT → All
Comment 26•23 years ago
|
||
Bugs targeted at mozilla1.0 without the mozilla1.0 keyword moved to mozilla1.0.1
(you can query for this string to delete spam or retrieve the list of bugs I've
moved)
Target Milestone: mozilla1.0 → mozilla1.0.1
Comment 27•23 years ago
|
||
Resetting Milestone (due to mass-change) and adding mozilla 1.0 keyword.
Keywords: mozilla1.0
Target Milestone: mozilla1.0.1 → ---
Assignee | ||
Updated•23 years ago
|
Target Milestone: --- → mozilla1.0
Comment 28•23 years ago
|
||
Moving Netscape owned 0.9.9 and 1.0 bugs that don't have an nsbeta1, nsbeta1+,
topembed, topembed+, Mozilla0.9.9+ or Mozilla1.0+ keyword. Please send any
questions or feedback about this to adt@netscape.com. You can search for
"Moving bugs not scheduled for a project" to quickly delete this bugmail.
Target Milestone: mozilla1.0 → mozilla1.2
Assignee | ||
Updated•22 years ago
|
Target Milestone: mozilla1.2alpha → mozilla1.2beta
Assignee | ||
Comment 29•22 years ago
|
||
Clearing milestone for now.
Target Milestone: mozilla1.2beta → ---
Assignee | ||
Comment 30•21 years ago
|
||
This has been covered exhaustively, marking Fixed.
Status: ASSIGNED → RESOLVED
Closed: 21 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•