New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.
Starred by 1 user

Issue metadata

Status: Fixed
Owner:
Email to this user bounced
Closed: Dec 2012
Cc:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 2
Type: Bug-Security



Sign in to add a comment
link

Issue 151895: Defense to throw "unauthorized" infobar for excessively crashing plug-in does not work for Pepper Flash!

Reported by scarybea...@gmail.com, Sep 24 2012

Issue description

It actually never worked, because the Pepper plug-in host class is different from the NPAPI plug-in host class, and the former has never listened for the OnProcessCrashed() message.

There was also a logic error that prevented excessive crashes from counting against PPAPI plug-in types.

Both are trivial fixes so we can get them landed in the M22 patch.
 

Comment 1 by bugdroid1@chromium.org, Sep 24 2012

Project Member

Comment 2 by scarybea...@gmail.com, Sep 24 2012

Labels: Merge-Approved
Status: FixUnreleased

Comment 3 by scarybea...@gmail.com, Sep 24 2012

Labels: -Restrict-View-SecurityTeam -Merge-Approved Restrict-View-SecurityNotify Merge-Merged

Comment 4 by bugdroid1@chromium.org, Sep 24 2012

Project Member

Comment 5 by bugdroid1@chromium.org, Sep 24 2012

Project Member

Comment 6 by scarybea...@gmail.com, Oct 2 2012

Labels: CVE-2012-5111

Comment 7 by jsc...@chromium.org, Dec 20 2012

Status: Fixed

Comment 8 by bugdroid1@chromium.org, Mar 10 2013

Project Member
Labels: -Type-Security -SecSeverity-Low -SecImpacts-Stable -SecImpacts-Beta -Mstone-22 Security-Severity-Low Security-Impact-Stable Security-Impact-Beta M-22 Type-Bug-Security

Comment 9 by bugdroid1@chromium.org, Mar 11 2013

Project Member
Labels: -Area-Undefined

Comment 10 by scarybea...@gmail.com, Mar 21 2013

Labels: -Restrict-View-SecurityNotify

Comment 11 by bugdroid1@chromium.org, Mar 21 2013

Project Member
Labels: -Security-Severity-Low Security_Severity-Low

Comment 12 by bugdroid1@chromium.org, Mar 21 2013

Project Member
Labels: -Security-Impact-Stable Security_Impact-Stable

Comment 13 by bugdroid1@chromium.org, Mar 21 2013

Project Member
Labels: -Security-Impact-Beta Security_Impact-Beta

Comment 14 by sheriffbot@chromium.org, Jun 14 2016

Project Member
Labels: -security_impact-beta

Comment 15 by sheriffbot@chromium.org, Oct 1 2016

Project Member
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 16 by sheriffbot@chromium.org, Oct 2 2016

Project Member
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 17 by mbarbe...@chromium.org, Oct 2 2016

Labels: allpublic

Comment 18 by awhalley@chromium.org, Apr 25 2018

Labels: CVE_description-submitted

Comment 19 by sheriffbot@chromium.org, Jul 28 2018

Project Member
Labels: -Pri-0 Pri-2

Sign in to add a comment