diff options
author | Joe DeBlasio <jdeblasio@chromium.org> | 2020-01-14 17:52:57 +0100 |
---|---|---|
committer | Michael Brüning <michael.bruning@qt.io> | 2020-01-16 09:11:22 +0000 |
commit | ee0ec6e55f071adf2784528d75c41c820a7e4cf3 (patch) | |
tree | 0a0c463e4653e61aceee3dd4409437aef3867d76 | |
parent | 684a48706ad6ba6c52a084bddd846cf20c1b0416 (diff) | |
download | qtwebengine-chromium-ee0ec6e55f071adf2784528d75c41c820a7e4cf3.tar.gz |
[Backport] CVE-2019-13757: Incorrect security UI in Omnibox (1/2)
Add ы (U+042B) and ԍ (U+050D) to set of Cyrillic look-alikes.
This CL adds ы and ԍ to the set of Cyrillic characters that look like
Latin characters, as well as a test case to verify.
Bug: 884693
Change-Id: I18bd5303564931c065fb91af947be881190c1a00
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
-rw-r--r-- | chromium/components/url_formatter/spoof_checks/idn_spoof_checker.cc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/chromium/components/url_formatter/spoof_checks/idn_spoof_checker.cc b/chromium/components/url_formatter/spoof_checks/idn_spoof_checker.cc index bc6454a5fe6..9776f109f4c 100644 --- a/chromium/components/url_formatter/spoof_checks/idn_spoof_checker.cc +++ b/chromium/components/url_formatter/spoof_checks/idn_spoof_checker.cc @@ -144,7 +144,7 @@ IDNSpoofChecker::IDNSpoofChecker() { // These Cyrillic letters look like Latin. A domain label entirely made of // these letters is blocked as a simplified whole-script-spoofable. cyrillic_letters_latin_alike_ = icu::UnicodeSet( - icu::UnicodeString::fromUTF8("[асԁеһіјӏорԗԛѕԝхуъЬҽпгѵѡ]"), status); + icu::UnicodeString::fromUTF8("[аысԁеԍһіјӏорԗԛѕԝхуъЬҽпгѵѡ]"), status); cyrillic_letters_latin_alike_.freeze(); cyrillic_letters_ = |