The Vulnerability History Project

Warning: Our website does not support Internet Explorer, please use Edge instead.

Add a unit test that filenames aren't unintentionally converted to URLs.

      Also fixes two issues in OSExchangeDataProviderWin:
- It used a disjoint set of clipboard formats when handling
  GetUrl(..., true /* filename conversion */) vs GetFilenames(...), so the
  actual returned results would vary depending on which one was called.
- It incorrectly used ::DragFinish() instead of ::ReleaseStgMedium().
  ::DragFinish() is only meant to be used in conjunction with WM_DROPFILES.

BUG=346135

Review URL: https://codereview.chromium.org/380553002

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@283226 0039d316-1c4b-4281-b951-d872f2087c98

by Jack the Fossa 2014-07-15 19:04:37 UTC

commit e93dc535728da259ec16d1c3cc393f80b25f64ae

Chromium Fix CVE-2014-1726

base/win/scoped_hglobal.h

+6 -6

printing/backend/print_backend_win.cc

+1 -1

remoting/host/clipboard_win.cc

+1 -1

ui/base/clipboard/clipboard_util_win.cc

+110 -100

ui/base/clipboard/clipboard_util_win.h