New issue
Advanced search Search tips

Issue 837048 link

Starred by 1 user
Status: Fixed
Owner:
eugene...@chromium.org
Closed: May 2018
Cc:
danyao@chromium.org
srikanthg@chromium.org
ios-bugs-priority@chromium.org
ios-bugs@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: iOS
Pri: 1
Type: Bug-Security
Team-Security-UX



Sign in to add a comment

Security: URL spoofing (wrong url in omnibox after going back from search result)

Reported by chromium...@gmail.com, Apr 26 2018 
VERSION
Chrome Version: 66.0.3359.98
Operating System: iOS 11.2.2 

REPRODUCTION CASE

I'm able to repro  issue 801000 .

1. Search for http://www.techproresearch.com/downloads/gdpr-consent-request-forms-sample-text/?ftag=tip5a3d6c8 or go to http://goo.gl/bNKFPZ
2. Tap the first result (GDPR consent request forms: Sam...)
3. Tap to go back 
4. Tap to go forward
screen.jpeg
109 KB View Download

Comment 1 by elawrence@chromium.org, Apr 26 2018 

 Issue 837051  has been merged into this issue.

Comment 2 by elawrence@chromium.org, Apr 26 2018 

 Issue 837053  has been merged into this issue.

Comment 3 by elawrence@chromium.org, Apr 26 2018 

 Issue 837054  has been merged into this issue.

Comment 4 by elawrence@chromium.org, Apr 26 2018 

 Issue 837055  has been merged into this issue.

Comment 5 by chromium...@gmail.com, Apr 26 2018

screen video.mp4
2.6 MB View Download

Comment 6 by elawrence@chromium.org, Apr 26 2018

Cc: srikanthg@chromium.org danyao@chromium.org
Components: UI>Browser>Navigation UI>Browser>Omnibox>SecurityIndicators
Labels: FoundIn-66 OS-iOS
Owner: eugene...@chromium.org
Status: Assigned (was: Unconfirmed)
I wasn't able to reproduce this with iOS 11.3 and Chrome 67/Chrome 68. 

Eugene, could you PTAL?

Comment 7 by chromium...@gmail.com, Apr 27 2018 

This occurs when the lock icon disappears on google.com after tapping to go back from techproresearch.com

Comment 8 by srikanthg@chromium.org, Apr 27 2018 

I am not able to reproduce so far.
Can you upgrade to M66.0.3359.122 stable and see if the issue is fixed there?

Comment 9 by chromium...@gmail.com, Apr 27 2018 

I'm still able to repro this on 66.0.3359.122 stable.

Comment 10 by elawrence@chromium.org, Apr 30 2018

Labels: M-66 Security_Severity-Medium Security_Impact-Stable Pri-1
Reporter: Do you have Beta/Dev/Canary available? If so, can you try reproducing it there? I don't suppose you'd be willing to try on the latest iOS? :)

Do you have any repro that does not require user-interaction?

Comment 11 by chromium...@gmail.com, May 1 2018 

Hmm... doesn't repro on iOS 11.3.1 on 67M chrome.

Comment 12 by eugene...@chromium.org, May 1 2018 

M67 contains at least one bugfix for the URL spoofing. That probably explains the reason why the bug is no longer reproducible.

Comment 13 by eugene...@chromium.org, May 3 2018

Status: Fixed (was: Assigned)
Project Member

Comment 14 by sheriffbot@chromium.org, May 4 2018

Labels: -Restrict-View-SecurityTeam Restrict-View-SecurityNotify

Comment 15 by awhalley@google.com, May 7 2018

Labels: reward-topanel

Comment 16 by awhalley@google.com, May 9 2018

Labels: -reward-topanel reward-0
Per comment 12, I'm afraid we'd already fixed this in top of tree.
Project Member

Comment 17 by sheriffbot@chromium.org, Aug 10

Labels: -Restrict-View-SecurityNotify allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment