Closed Bug 7264 Opened 26 years ago Closed 25 years ago

All JavaScript running with correct principals

Categories

(Core :: Security, defect, P3)

All
Windows NT
defect

Tracking

()

VERIFIED FIXED

People

(Reporter: norrisboyd, Assigned: norrisboyd)

Details

Entering all security bugs and tasks for SeaMonkey into Buzilla for schedule tracking.
Blocks: 7252
Status: NEW → ASSIGNED
Target Milestone: M13
Target Milestone: M13 → M14
Target Milestone: M14 → M15
Not required for M14.
Push security review tasks off until M16.
Target Milestone: M15 → M16
Bulk moving all Browser Security bugs to new Security: General component. The previous Security component for Browser will be deleted.
Component: Security → Security: General
Need to figure out what's up with nsXMLContentSink::EvaluateScript. Otherwise looks okay. Add code to nsJSContext::ExecuteScript to refuse execution of scripts without principals.
Fixed: Checking in editor/base/nsEditorShell.cpp; /m/pub/mozilla/editor/base/nsEditorShell.cpp,v <-- nsEditorShell.cpp new revision: 1.128; previous revision: 1.127 done Checking in editor/base/nsEditorShell.h; /m/pub/mozilla/editor/base/nsEditorShell.h,v <-- nsEditorShell.h new revision: 1.49; previous revision: 1.48 done Checking in layout/xml/document/src/nsXMLContentSink.cpp; /m/pub/mozilla/layout/xml/document/src/nsXMLContentSink.cpp,v <-- nsXMLContent Sink.cpp new revision: 1.94; previous revision: 1.93 done Checking in xpfe/browser/src/nsBrowserInstance.cpp; /m/pub/mozilla/xpfe/browser/src/nsBrowserInstance.cpp,v <-- nsBrowserInstance. cpp new revision: 1.97; previous revision: 1.96 done Checking in xpfe/browser/src/nsBrowserInstance.h; /m/pub/mozilla/xpfe/browser/src/nsBrowserInstance.h,v <-- nsBrowserInstance.h new revision: 1.23; previous revision: 1.22 done
Status: ASSIGNED → RESOLVED
Closed: 25 years ago
Resolution: --- → FIXED
Marking verified per norris' comments.
No longer blocks: 7252
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.