W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > November 2012

[Bug 20034] canvas getImageData opens security whole for code

From: <bugzilla@jessica.w3.org>
Date: Wed, 21 Nov 2012 06:38:45 +0000
To: public-html-bugzilla@w3.org
Message-ID: <bug-20034-2486-xDbbbjps2r@http.www.w3.org/Bugs/Public/>
https://www.w3.org/Bugs/Public/show_bug.cgi?id=20034

--- Comment #3 from Boris Zbarsky <bzbarsky@mit.edu> ---
> becouse here normal firewalls and intrusion detection systems has a chance to
> interpret and revert the text (code)

How, exactly?  All they know is the browser is doing an HTTP GET.  The server
returns an image.  What exactly is the firewall detecting?

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
Received on Wednesday, 21 November 2012 06:38:47 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 21 November 2012 06:38:47 GMT