Fixing security bug 134315. Make sure we clear the JS scope in cases where it's needed. r=mstoltz@netscape.com, sr=brendan@mozilla.org

git-svn-id: svn://10.0.0.236/trunk@124818 18797224-902f-48f8-a5cc-f745e15eee43
2002-07-09 02:49:58 +00:00
parent 8291b6d5c8
commit ce2c73b7b7
8 changed files with 73 additions and 35 deletions
--- a/mozilla/content/html/document/src/nsHTMLDocument.cpp
+++ b/mozilla/content/html/document/src/nsHTMLDocument.cpp
@@ -2399,7 +2399,8 @@ nsHTMLDocument::OpenCommon(nsIURI* aSourceURL)
    nsCOMPtr<nsIDOMDocument> kungFuDeathGrip =
      do_QueryInterface((nsIHTMLDocument*)this);

-    result = mScriptGlobalObject->SetNewDocument(kungFuDeathGrip, PR_FALSE);
+    result = mScriptGlobalObject->SetNewDocument(kungFuDeathGrip, PR_FALSE,
+                                                 PR_FALSE);

    if (NS_FAILED(result))
      return result;