DOMWindow::open performs a security check on a wrong window
authorcommit-queue@webkit.org <commit-queue@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sat, 16 Jul 2011 20:12:51 +0000 (20:12 +0000)
committercommit-queue@webkit.org <commit-queue@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sat, 16 Jul 2011 20:12:51 +0000 (20:12 +0000)
commit1cef5f02e07ca023cd09233d17186d4057d332ee
treea329d32468074d622867339623ba29122512b9e2
parenta0abf8219dcc5c00ee1fc6bc85934d94ea9d3501
DOMWindow::open performs a security check on a wrong window
https://bugs.webkit.org/show_bug.cgi?id=64651

Patch by Sergey Glazunov <serg.glazunov@gmail.com> on 2011-07-16
Reviewed by Adam Barth.

Source/WebCore:

Test: http/tests/security/xss-DENIED-window-open-parent.html

* page/DOMWindow.cpp:
(WebCore::DOMWindow::open):

LayoutTests:

* http/tests/security/resources/xss-DENIED-window-open-parent-attacker.html: Added.
* http/tests/security/xss-DENIED-window-open-parent-expected.txt: Added.
* http/tests/security/xss-DENIED-window-open-parent.html: Added.

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@91152 268f45cc-cd09-0410-ab3c-d52691b4dbfc
LayoutTests/ChangeLog
LayoutTests/http/tests/security/resources/xss-DENIED-window-open-parent-attacker.html [new file with mode: 0644]
LayoutTests/http/tests/security/xss-DENIED-window-open-parent-expected.txt [new file with mode: 0644]
LayoutTests/http/tests/security/xss-DENIED-window-open-parent.html [new file with mode: 0644]
Source/WebCore/ChangeLog
Source/WebCore/page/DOMWindow.cpp