[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #10593 [Firefox Patch Issues]: Clipboard data might be leaking

Subject: Re: [tor-bugs] #10593 [Firefox Patch Issues]: Clipboard data might be leaking
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 13 Jan 2014 23:45:50 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 13 Jan 2014 18:45:47 -0500
In-reply-to: <042.3eef21861ab0e1d42f3301fa7f544516@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <042.3eef21861ab0e1d42f3301fa7f544516@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#10593: Clipboard data might be leaking
-------------------------------------+-------------------------------------
     Reporter:  gk                   |      Owner:  mikeperry
         Type:  defect               |     Status:  new
     Priority:  normal               |  Milestone:
    Component:  Firefox Patch        |    Version:
  Issues                             |   Keywords:  tbb-linkability,
   Resolution:                       |  tbb-3.0
Actual Points:                       |  Parent ID:
       Points:                       |
-------------------------------------+-------------------------------------

Comment (by mikeperry):

 What is the scope of this? In #10285, you said cross-origin. Does that
 just mean 3rd parties on the current tab? Or all tabs?

 In either case, this seems like something Mozilla should be aware of. If I
 am writing some kind of webapp that sources third party content in iframes
 (like ads), it seems bad to have those third party frames observing *any*
 events outside their origin. In fact, that is usually forbidden.

 What about pasting things into the url bar or other chrome areas? Is that
 still visible to content? That would be even worse.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10593#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #10593 [Firefox Patch Issues]: Clipboard data might be leaking
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #10603 [Tor Launcher]: Make tor log available if tor exited unexpectedly
Next by Author: Re: [tor-bugs] #10625 [Ooni]: Cannot build the 'GeoIP' extension
Previous by thread: Re: [tor-bugs] #10593 [Firefox Patch Issues]: Clipboard data might be leaking
Next by thread: Re: [tor-bugs] #10593 [Firefox Patch Issues]: Clipboard data might be leaking
Index(es):
- Author
- Thread