[Backport] Fix for CVE-2017-5089

Remove a small range of Tibetan characters from the allowed IDN set on Mac. These characters do not display in the default macOS system font, despite the font reporting that the glyphs are present. BUG=714196 TBR=rsesek@chromium.org (cherry picked from commit bccbe7c22a38f68da0c4d0bb9258060f2554e318) Change-Id: I7bc8eae1be5e928b65d2a74a9e177bd4b77722fd Review-Url: https://codereview.chromium.org/2865213002 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
author: Allan Sandfeld Jensen <allan.jensen@qt.io> 2017-06-20 10:17:04 +0200
committer: Alexandru Croitor <alexandru.croitor@qt.io> 2017-07-07 09:15:41 +0000
commit: 41c20711637fa1d117ece075dd6833bc9685b6af (patch)
tree: 5822c19d339e6b5ac6644076ca71176b0a26b7cc
parent: e2ac3f691545dc4565e9124a7315b2f47efbd819 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/chromium/components/url_formatter/url_formatter.cc b/chromium/components/url_formatter/url_formatter.cc
index e5822fa8bfb..60c88c5eb88 100644
--- a/chromium/components/url_formatter/url_formatter.cc
+++ b/chromium/components/url_formatter/url_formatter.cc
@@ -432,6 +432,9 @@ bool IsIDNComponentSafe(const base::char16* str,
           "[\\u2010\\u2024\\u2027\\u2028\\u2029\\u2039\\u203a\\u2044\\u205f]"
           "[\\u2154-\\u2156][\\u2159-\\u215b][\\u215f\\u2215\\u23ae"
           "\\u29f6\\u29f8\\u2afb\\u2afd][\\u2ff0-\\u2ffb][\\u3014"
+#if defined(OS_MACOSX)
+          "\\u0f8cu\\u0f8du\\u0f8eu\\u0f8fu"
+#endif
           "\\u3015\\u3033\\u3164\\u321d\\u321e\\u33ae\\u33af\\u33c6\\u33df\\ufe"
           "14"
           "\\ufe15\\ufe3f\\ufe5d\\ufe5e\\ufeff\\uff0e\\uff06\\uff61\\uffa0\\uff"
author	Allan Sandfeld Jensen <allan.jensen@qt.io>	2017-06-20 10:17:04 +0200
committer	Alexandru Croitor <alexandru.croitor@qt.io>	2017-07-07 09:15:41 +0000
commit	41c20711637fa1d117ece075dd6833bc9685b6af (patch)
tree	5822c19d339e6b5ac6644076ca71176b0a26b7cc
parent	e2ac3f691545dc4565e9124a7315b2f47efbd819 (diff)