Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(95)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 99343006: Merge 237115 "Security fix for untrusted signin confirm dialog" (Closed)

Created:
7 years ago by Roger Tawa OOO till Jul 10th
Modified:
7 years ago
Reviewers:
guohui
CC:
chromium-reviews, tim+watch_chromium.org, tfarina, rsimha+watch_chromium.org, haitaol+watch_chromium.org
Visibility:
Public.

Description

Merge 237115 "Security fix for untrusted signin confirm dialog" > Security fix for untrusted signin confirm dialog > > When the window associated with the confirm dialog is closed without user clicking 'ok got it', chrome starts sync with default settings. This could be exploited to sign a user's Chrome into an attacker's account, as reported in crbug 321940. > > BUG=321940 > > Review URL: https://codereview.chromium.org/79553004 TBR=guohui@chromium.org Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=238138

Patch Set 1 #

Unified diffs Side-by-side diffs Delta from patch set Stats (+4 lines, -4 lines) Patch
M chrome/browser/ui/cocoa/one_click_signin_dialog_controller_browsertest.mm View 1 chunk +1 line, -1 line 0 comments Download
M chrome/browser/ui/cocoa/one_click_signin_view_controller.mm View 1 chunk +1 line, -1 line 0 comments Download
M chrome/browser/ui/views/sync/one_click_signin_bubble_view.cc View 1 chunk +1 line, -1 line 0 comments Download
M chrome/browser/ui/views/sync/one_click_signin_bubble_view_unittest.cc View 1 chunk +1 line, -1 line 0 comments Download

Messages

Total messages: 3 (0 generated)
Roger Tawa OOO till Jul 10th
7 years ago (2013-12-02 18:42:58 UTC) #1
Roger Tawa OOO till Jul 10th
Committed patchset #1 manually as r238138.
7 years ago (2013-12-02 18:44:06 UTC) #2
guohui
7 years ago (2013-12-02 18:46:36 UTC) #3
Message was sent while issue was closed. 
lgtm

Powered by Google App Engine
This is Rietveld 408576698