chore: cherry-pick 3c80bb2a594f from chromium #28689

ppontes · 2021-04-16T10:57:01Z

Forbid script execution while updating the paint lifecycle.

(cherry picked from commit 5425d3b100fab533ea9ddc2ed8fbfc4870db0587)

Bug: 1196781
Change-Id: Idc8d24792d5c413691977b09ca821de4e13887ad
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2812000
Commit-Queue: Adrian Taylor adetaylor@chromium.org
Commit-Queue: Robert Flack flackr@chromium.org
Reviewed-by: Xianzhu Wang wangxianzhu@chromium.org
Cr-Original-Commit-Position: refs/heads/master@{#870275}
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2821879
Reviewed-by: Robert Flack flackr@chromium.org
Reviewed-by: Achuith Bhandarkar achuith@chromium.org
Reviewed-by: Victor-Gabriel Savu vsavu@google.com
Commit-Queue: Jana Grill janagrill@chromium.org
Cr-Commit-Position: refs/branch-heads/4240@{#1601}
Cr-Branched-From: f297677702651916bbf65e59c0d4bbd4ce57d1ee-refs/heads/master@{#800218}

Notes: Security: backported fix for CVE-2021-21206.

release-clerk · 2021-04-19T13:52:49Z

Release Notes Persisted

Security: backported fix for CVE-2021-21206.

chore: cherry-pick 3c80bb2a594f from chromium

848242a

ppontes requested a review from a team as a code owner April 16, 2021 10:57

ppontes added 11-x-y backport-check-skip Skip trop's backport validity checking semver/patch backwards-compatible bug fixes labels Apr 16, 2021

electron-cation bot added new-pr 🌱 PR opened in the last 24 hours and removed new-pr 🌱 PR opened in the last 24 hours labels Apr 16, 2021

update patches

08f1cd3

jkleinsc approved these changes Apr 19, 2021

View reviewed changes

jkleinsc merged commit fb0b474 into 11-x-y Apr 19, 2021

jkleinsc deleted the cherry-pick/11-x-y/chromium/3c80bb2a594f branch April 19, 2021 13:52

Provide feedback