angler-fishThe Vulnerability History Project

[DevTools] Do not use &quotsettings&quot query param.

      Implemented the same functionality on embedder side.
Also, sanitizing &quotsettings&quot query param for remote frontends.

BUG=618037

Review-Url: https://codereview.chromium.org/2177983004
Cr-Commit-Position: refs/heads/master@{#407666}
by Geraldine the Macaw 2016-07-26 01:11:02 UTC
commit d5e6098dc2e984befc836f482845137245fa04e2
Chromium Fix CVE-2016-5165
chrome/browser/devtools/devtools_window.cc
+6 -18
chrome/browser/devtools/devtools_window.h
+2 -1
content/shell/browser/layout_test/blink_test_controller.cc
+1 -1
content/shell/browser/layout_test/layout_test_devtools_frontend.cc
+8 -4
content/shell/browser/layout_test/layout_test_devtools_frontend.h
+2 -1
content/shell/browser/shell_devtools_frontend.cc
-15
content/shell/browser/shell_devtools_frontend.h
+1 -1
third_party/WebKit/Source/devtools/front_end/devtools.js
-2
third_party/WebKit/Source/devtools/front_end/main/Main.js
+12
expand_less