New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 634954 link

Starred by 1 user

Issue metadata

Status: Fixed
Owner:
Closed: Aug 2016
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: iOS
Pri: 2
Type: Bug-Security



Sign in to add a comment

Security: Address bar spoofing with itunes page on iOS

Reported by chromium...@gmail.com, Aug 5 2016

Issue description

VERSION
Chrome Version: 52.0.2743.84
Operating System: iOS

REPRODUCTION CASE
1. Disable your internet connection.
2. Lunch a new incognito window.
3. Navigate to https://itunes.apple.com/
4. Enable your internet connection and switch the tab (incognito tab), then navigate to any web site "google.com" 
5. Go back to the original URL (https://itunes.apple.com) and observe.

As I mentioned, you should disable and enable your internet connection because if you want to navigate to https://itunes.apple.com with enabled connection almost every time itunes page simply redirects to itms:// which is AppStore native app, and that's why I mentioned to disable your internet connection.


 
actual.mp4
2.1 MB View Download
Oops this bug doesn't need to lunch a incognito window.
Cc: lgar...@chromium.org
Components: UI>Browser>Omnibox Security>UX
Labels: Security_Severity-Low Security_Impact-Stable OS-iOS Pri-2
Owner: eugene...@chromium.org
Status: Assigned (was: Unconfirmed)
Eugene: could you please take a look at this issue? Thanks!
Cc: jyqu...@chromium.org
Status: Started (was: Assigned)
Chrome should purge web view after navigating back to external URL. This will destroy Back-Forward Navigation cache, but there is no good alternative (loading about:black destroys Forward part of the cache and is less reliable). 
This looks like fixed in https://codereview.chromium.org/2225943002/
Status: Fixed (was: Started)
Thanks for reminding :)
Project Member

Comment 6 by sheriffbot@chromium.org, Aug 11 2016

Labels: -Restrict-View-SecurityTeam Restrict-View-SecurityNotify

Comment 7 Deleted

Project Member

Comment 8 by sheriffbot@chromium.org, Nov 17 2016

Labels: -Restrict-View-SecurityNotify allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Components: -Security>UX
Labels: Team-Security-UX
Security>UX component is deprecated in favor of the Team-Security-UX label

Sign in to add a comment