Bug 1271635 - XSS when viewing image attachments

author David Lawrence <dkl@mozilla.com>

Tue, 10 May 2016 13:52:59 +0000 (13:52 +0000)

committer David Lawrence <dkl@mozilla.com>

Tue, 10 May 2016 13:52:59 +0000 (13:52 +0000)
author David Lawrence <dkl@mozilla.com>
Tue, 10 May 2016 13:52:59 +0000 (13:52 +0000)
committer David Lawrence <dkl@mozilla.com>
Tue, 10 May 2016 13:52:59 +0000 (13:52 +0000)
diff --git a/extensions/BugModal/web/bug_modal.js b/extensions/BugModal/web/bug_modal.js

index 2d7bb4764f384529bda7f81d228d4144c29edaa6..e0ef40a13ed172ca27142d6c14fea9d5a2fa0fe4 100644 (file)
--- a/extensions/BugModal/web/bug_modal.js
+++ b/extensions/BugModal/web/bug_modal.js
@@ -1373,7 +1373,7 @@ function lb_show(el) {
          .addClass('minor')
          .text('Close')
          .appendTo(overlay2);
-    title.append(el.title);
+    title.text(el.title);
      overlay.add(overlay2).click(lb_close);
      img.add(overlay).animate({ opacity: 1 }, 200);
  }
author	David Lawrence <dkl@mozilla.com>
	Tue, 10 May 2016 13:52:59 +0000 (13:52 +0000)
committer	David Lawrence <dkl@mozilla.com>
	Tue, 10 May 2016 13:52:59 +0000 (13:52 +0000)