W3C home > Mailing lists > Public > whatwg@whatwg.org > May 2014

Re: [whatwg] AppCache Content-Type Security Considerations

From: John Mellor <johnme@google.com>
Date: Tue, 13 May 2014 20:36:15 +0100
Message-ID: <CAG_kaUYFRZEzNKWXQVWcdAVCATrHC-xg004DZvLKyQwq-dfr4w@mail.gmail.com>
To: Ian Hickson <ian@hixie.ch>
Cc: whatwg <whatwg@lists.whatwg.org>, "Eduardo' Vela\\ <Nava>" <evn@google.com>, Adam Barth <w3c@adambarth.com>, Michal Zalewski <lcamtuf@coredump.cx>
On 13 May 2014 17:38, Ian Hickson <ian@hixie.ch> wrote:

> Are the lessons learnt here being reported to the Service Worker team?

Yes, I've been discussing this with them in
https://github.com/slightlyoff/ServiceWorker/issues/224 and
https://github.com/slightlyoff/ServiceWorker/issues/253, which is what led
me to spot and report this vulnerability in AppCache to Eduardo et al in
the first place. I'll make sure the Service Worker folks stay in sync with
this thread.
Received on Tuesday, 13 May 2014 19:37:05 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 17:00:20 UTC