[Bug 1069817] Re: Bypasses Same Origin Policy checks via toDataURL()

Launchpad Bug Tracker Thu, 13 Dec 2012 06:21:39 -0800

This bug was fixed in the package unity-firefox-extension -
2.4.1-0ubuntu1.2


---------------
unity-firefox-extension (2.4.1-0ubuntu1.2) quantal-security; urgency=low

  * SECURITY UPDATE: same origin policy bypass via toDataURL() (LP: #1069817)
    - debian/patches/CVE-2012-0958.patch: merge Unity.toDataURL to
      Unity.init in unity-firefox-extension/content/unity-api.js.
    - CVE-2012-0958
 -- Marc Deslauriers <marc.deslauri...@ubuntu.com>   Wed, 12 Dec 2012 10:54:19 
-0500

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1069817

Title:
  Bypasses Same Origin Policy checks via toDataURL()

To manage notifications about this bug go to:
https://bugs.launchpad.net/unity-chromium-extension/+bug/1069817/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1069817] Re: Bypasses Same Origin Policy checks via toDataURL()

Reply via email to