Issue metadata
Sign in to add a comment
|
Security flaw on Google Search Android
Reported by
mattsto...@gmail.com,
Jan 29 2018
|
||||||||||||||||||||
Issue descriptionOn Android the search bar sends non-https traffic through to websites. If you use chrome, that sends https traffic. Please can someone correct the Google search on Android bar to send https traffic through to websites? Matt Storms This template is ONLY for reporting security bugs. If you are reporting a Download Protection Bypass bug, please use the "Security - Download Protection" template. For all other reports, please use a different template. Please READ THIS FAQ before filing a bug: https://chromium.googlesource.com /chromium/src/+/master/docs/security/faq.md Please see the following link for instructions on filing security bugs: https://www.chromium.org/Home/chromium-security/reporting-security-bugs NOTE: Security bugs are normally made public once a fix has been widely deployed. VULNERABILITY DETAILS Please provide a brief explanation of the security issue. VERSION Chrome Version: [x.x.x.x] + [stable, beta, or dev] Operating System: [Please indicate OS, version, and service pack level] REPRODUCTION CASE Please include a demonstration of the security bug, such as an attached HTML or binary file that reproduces the bug when loaded in Chrome. PLEASE make the file as small as possible and remove any content not required to demonstrate the bug. FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION Type of crash: [tab, browser, etc.] Crash State: [see link above: stack trace *with symbols*, registers, exception record] Client ID (if relevant): [see link above]
,
Jan 29 2018
On Android if you search via the search bar that will send non-https Google referral traffic through to the website that the user lands on. If a user uses the chrome app, that sends https referral traffic.
,
Jan 29 2018
I can include an image pointing out the search bar in Android if you wish.
,
Jan 29 2018
Thank you for providing more feedback. Adding requester "elawrence@chromium.org" to the cc list and removing "Needs-Feedback" label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jan 29 2018
Again, it sounds like you're reporting an issue with a non-Chrome UI elsewhere in Android? If that's the case, this isn't the right place to report the issue, please use https://www.google.com/about/appsecurity/android-rewards/ instead. Having said that, I suspect what you're reporting isn't actually a security vulnerability, and simply that, when a user clicks a link in the Search Results of the built-in search application on Android, that link click sends a Referer header that is the fixed string "http://www.google.com/". You'd instead prefer that the application send a Referer of "https://www.google.com/"?
,
Jan 29 2018
Yes on the header. Google says they are all https but this is not.
,
Jan 29 2018
Thanks, I've filed an issue against the Google Search team to clean this up.
,
Jan 29 2018
Cool. Can I follow that ticket?
,
Jan 29 2018
Unfortunately, no, the Search App is only available as an internal tracker. Thanks for the report though!
,
May 8 2018
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||
Comment 1 by elawrence@chromium.org
, Jan 29 2018