Mozilla

Author	SHA1	Message	Date
norris%netscape.com	82970f315d	Fix 22909 previousSibling vulnerability r=mstoltz git-svn-id: svn://10.0.0.236/trunk@56914 18797224-902f-48f8-a5cc-f745e15eee43	2000-01-06 00:59:18 +00:00
norris%netscape.com	d83622d4ac	* Fix the following bugs by tightening the default security policy. 17977 [DOGFOOD] Reading documents using document.body 17538 document.lastModified is exposed 17537 document.images vulnerabilities 16036 [DOGFOOD] document.Element exposes the DOM of documents from 15757 [DOGFOOD] Injecting JS code using setAttribute and getElemen 15550 Injecting text in documents from any domain using createText 15067 [DOGFOOD] getElementsByTagName() allows reading of arbitrary * Create an array of dom property policy types and initialize it when the script security manager is created. * Move some implementation code to a new shared implementation base class. * Implement privilege enabling, disabling and reverting * Implement stack walking for checking privileges. r=mstoltz@netscape.com * Modify nsIPref to support security policy work. r=neeti@netscape.com git-svn-id: svn://10.0.0.236/trunk@53254 18797224-902f-48f8-a5cc-f745e15eee43	1999-11-11 22:10:36 +00:00
dmose%mozilla.org	0efb7c174c	updated xPL license boilerplate to v1.1, a=chofmann@netscape.com,r=endico@mozilla.org git-svn-id: svn://10.0.0.236/trunk@52910 18797224-902f-48f8-a5cc-f745e15eee43	1999-11-06 03:43:54 +00:00
norris%netscape.com	34b474302b	Add all-powerful system principals. Remove some dead code from the build. git-svn-id: svn://10.0.0.236/trunk@45380 18797224-902f-48f8-a5cc-f745e15eee43	1999-09-01 00:54:35 +00:00

4 Commits