delta/qt5/qtwebengine-chromium.git - code.qt.io: qt/qtwebengine-chromium.git

diff options

author	Allan Sandfeld Jensen <allan.jensen@qt.io>	2019-10-15 10:29:01 +0200
committer	Allan Sandfeld Jensen <allan.jensen@qt.io>	2019-10-16 11:01:01 +0000
commit	e8ba421d30c92f095346c574c0d2bbf7e6a10369 (patch)
tree	4e14f1d10e8b9e9de76487932e2f31fed5b934cd /chromium/content/browser/frame_host/navigation_handle_impl.cc
parent	6ddab05a4c715e2a5f2792ba36ec4762c144355a (diff)
download	qtwebengine-chromium-e8ba421d30c92f095346c574c0d2bbf7e6a10369.tar.gz

[Backport] CVE-2019-13663 [2/2]

Block CJK ideographs looking like slashes in domain names This CL blocks the following characters from appearing in unicode domain names when they're surrounded by non-Japanese scripts: "丶" (CJK unified ideograph, U+4E36) "乀" (CJK unified ideograph, U+4E40) "乁" (CJK unified ideograph, U+4E41) "丿" (CJK unified ideograph, U+4E3F) None of these characters are currently used in domain names so the real world impact is nil. Bug: 863661 Change-Id: Ifc3a40d46d957bc99383445a71577a0cba744aec Commit-Queue: Mustafa Emre Acer <meacer@chromium.org> Reviewed-by: Tommy Li <tommycli@chromium.org> Cr-Commit-Position: refs/heads/master@{#679205} Reviewed-by: Michal Klocek <michal.klocek@qt.io>

Diffstat (limited to 'chromium/content/browser/frame_host/navigation_handle_impl.cc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: