diff options
author | Jack Hsieh <chengweih@chromium.org> | 2023-03-15 01:03:48 +0000 |
---|---|---|
committer | Michael BrĂ¼ning <michael.bruning@qt.io> | 2023-05-15 11:36:43 +0000 |
commit | 34482ee5da826627131767d907800f6f4a2f0a36 (patch) | |
tree | 170c6b6ccef36c4b29942be9fc3b7569e427b572 /chromium/net/socket/socket_options.cc | |
parent | 80a4577e2a50dbc181204a4352a2488a9d1ec657 (diff) | |
download | qtwebengine-chromium-108-based.tar.gz |
[Backport] CVE-2023-2462: Inappropriate implementation in Prompts (10/10)108-based
Cherry-pick of patch originally reviewed on
https://chromium-review.googlesource.com/c/chromium/src/+/4337726:
hid: Handle opaque top level origin in addedEventListener
In navigator.hid.addEventListener, throw an exception if the request
is coming from a context whose top level frame has an opaque origin.
Bug: 1375133
Change-Id: I43d3c59eb4715d5c1b970d6f466a256c580582d6
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/4337726
Commit-Queue: Jack Hsieh <chengweih@chromium.org>
Reviewed-by: Reilly Grant <reillyg@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1117306}
Reviewed-on: https://codereview.qt-project.org/c/qt/qtwebengine-chromium/+/476784
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
Diffstat (limited to 'chromium/net/socket/socket_options.cc')
0 files changed, 0 insertions, 0 deletions