Patch the XSS in Net-internal viewcache by html encoding "key"

BUG=40137 Test=None Review URL: http://codereview.chromium.org/1543009 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@43398 0039d316-1c4b-4281-b951-d872f2087c98
author: inferno@chromium.org <inferno@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> 2010-04-01 22:41:34 +0000
committer: inferno@chromium.org <inferno@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> 2010-04-01 22:41:34 +0000
commit: b098824eec611578330c4df3756dab9c48f33686 (patch)
tree: f180644b380803071c47addafac4da2aabb39e2a /net/url_request
parent: 29574e6f108129848e090a555254be8791732064 (diff)
download: chromium_src-b098824eec611578330c4df3756dab9c48f33686.zip
chromium_src-b098824eec611578330c4df3756dab9c48f33686.tar.gz
chromium_src-b098824eec611578330c4df3756dab9c48f33686.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/net/url_request/view_cache_helper.cc b/net/url_request/view_cache_helper.cc
index b818ba5..2f19529 100644
--- a/net/url_request/view_cache_helper.cc
+++ b/net/url_request/view_cache_helper.cc
@@ -163,7 +163,7 @@ void ViewCacheHelper::GetEntryInfoHTML(const std::string& key,
       data->assign(FormatEntryDetails(entry));
       entry->Close();
     } else {
-      data->assign("no matching cache entry for: " + key);
+      data->assign("no matching cache entry for: " + EscapeForHTML(key));
     }
   }
 }
author	inferno@chromium.org <inferno@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>	2010-04-01 22:41:34 +0000
committer	inferno@chromium.org <inferno@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>	2010-04-01 22:41:34 +0000
commit	b098824eec611578330c4df3756dab9c48f33686 (patch)
tree	f180644b380803071c47addafac4da2aabb39e2a /net/url_request
parent	29574e6f108129848e090a555254be8791732064 (diff)
download	chromium_src-b098824eec611578330c4df3756dab9c48f33686.zip chromium_src-b098824eec611578330c4df3756dab9c48f33686.tar.gz chromium_src-b098824eec611578330c4df3756dab9c48f33686.tar.bz2