(In the event of a compromised or Spectre’d renderer process, that is.)
-
-
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Well, my subtext is that we need to seriously look at how to prevent RCE in the renderer in the first place with memory safety.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Why do you say that? A renderer process shouldn't need access to cross-origin cookies if it hasn't loaded active content from that origin.
-
See the linked Chromium page. Apparently it does.
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.