- Desktop
- Enterprise
- Gaming
- Graphics
- Hardware
- Linux Kernel
- Multimedia
- Operating Systems
- Programming
- System Internals
- All Projects
- Latest News
- fate/iamf: add a demux text
- pg_combinebackup: Add --version to --help output
- PostgreSQL: Support SSL_R_VERSION_TOO_LOW when using LibreSSL
- avcodec/mediacodecenc: Add global header support
- tdf#159660: also add normal blend filter
- Linux Kernel: Linux 6.9-rc5
- WINE: Release 9.7.
- Sync psm/evdev/atkbd with FreeBSD
- Latest News (cont.)
- lavfi: Add pad_vaapi filter
- lavfi: Add drawbox_vaapi filter
- Linux Kernel: Linux 6.9-rc4
- Embind: support .implement()-based JS UNO objects
- tdf#33603: sd: rework notes panel
- xwayland: Add SourceValidate hook
- UPower: Release 1.90.4
- timezone: sync to TZDB 2024a
- Linux Kernel: Linux 6.9-rc3
- Optimize pg_popcount() with AVX-512 instructions
- Enhance nbtree ScalarArrayOp execution
Featured content is also available via:
Do not ignore TLS errors
Desktop / GNOME / Epiphany - Michael Catanzaro [igalia.com] - 8 August 2014 09:43 UTC
Currently, Epiphany loads web pages even though it realizes the connection may be insecure, displaying a broken lock in the address bar. By this point, it's too late: the attacker already has your session cookies. Display an error page instead. Based on groundwork by Brian Holt.
https://bugzilla.gnome.org/show_bug.cgi?id=708847
f0e7ab8 Do not ignore TLS errors
embed/ephy-embed-shell.c | 37 ++++++
embed/ephy-web-extension-proxy.c | 26 ++++
embed/ephy-web-extension-proxy.h | 2 +
embed/ephy-web-view.c | 195 ++++++++++++++++++++++++++++--
embed/ephy-web-view.h | 3 +-
embed/web-extension/ephy-web-extension.c | 129 ++++++++++++++++++--
src/ephy-shell.c | 3 +
src/resources/error.html | 2 +-
8 files changed, 379 insertions(+), 18 deletions(-)
Upstream: git.gnome.org
Share
- Tweet