Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security] [hackerone] adblocking DNS issue #16011

Closed
diracdeltas opened this issue May 20, 2021 · 4 comments · Fixed by brave/brave-core#8957
Closed

[Security] [hackerone] adblocking DNS issue #16011

diracdeltas opened this issue May 20, 2021 · 4 comments · Fixed by brave/brave-core#8957
Assignees
@antonok-edm
Labels
OS/Desktop priority/P2 A bad problem. We might uplift this to the next planned release. QA Pass-Linux QA Pass-macOS QA Pass-Win64 QA/Test-All-Platforms QA/Test-Plan-Specified QA/Yes release-notes/include security
Milestone
1.26.x - Release

Comments

@diracdeltas
Copy link
Member

https://hackerone.com/reports/1203842
@diracdeltas diracdeltas added security priority/P2 A bad problem. We might uplift this to the next planned release. labels May 20, 2021
@diracdeltas
Copy link
Member Author

cc @spylogsster to check whether brave/brave-core#8068 has the same leak

@antonok-edm antonok-edm mentioned this issue May 28, 2021
Merged
24 tasks
@stephendonner
Copy link

I used a special test build from CI: https://brave-jenkins-build-artifacts.s3.amazonaws.com/brave-browser-build-pr/proxy-disable-cname-uncloaking/b35173f457d8429bdeb9a44d956cc7d3f74c3752-0a1d47930bd4f300aab7638446bc44a100cdc478/windows/BraveBrowserStandaloneNightlySetup_91_1_27_39.exe

Brave 1.27.39 Chromium: 91.0.4472.77 (Official Build) nightly (64-bit)
Revision 1cecd5c8a856bc2a5adda436e7b84d8d21b339b6-refs/branch-heads/4472@{#1246}
OS Windows 10 OS Version 2009 (Build 21390.1010)

Steps:

  1. new profile
  2. launched Brave
  3. installed the NordVPN 2.29.1 extension (https://chrome.google.com/webstore/detail/nordvpn-%E2%80%94-1-vpn-chrome-ex/fjoaledfpmneenckfbpdfhkmimnjocfa)
  4. signed in using internal Brave credentials
  5. loaded https://test-cname.brave.software/cname-uncloaking.html
  6. followed the instructions, and added ||dev-pages.brave.software/static/images/test.jpg to brave://adblock
  7. clicked Run test
  8. confirmed that the output was Request was allowed
  9. also confirmed by re-running the test that DNS-lookup traffic went to NordVPN
CNAME-test output Wireshark
request-allowed wireshark

@antonok-edm antonok-edm mentioned this issue Jun 11, 2021
Merged
7 tasks
@antonok-edm antonok-edm added this to the 1.26.x - Beta milestone Jun 11, 2021
@LaurenWags
Copy link
Member

Labelling as QA/Blocked until there is a 1.26.x build with this fix.

@stephendonner stephendonner added QA/In-Progress Indicates that QA is currently in progress for that particular issue and removed QA/Blocked labels Jun 16, 2021
@stephendonner
Copy link

stephendonner commented Jun 16, 2021
edited by GeetaSarvadnya
Loading

Verified PASSED using the inline testplan with build

Brave 1.26.63 Chromium: 91.0.4472.106 (Official Build) (x86_64)
Revision 574f7b38e4e7244c92c4675e902e8f8e3d299ea7-refs/branch-heads/4472@{#1477}
OS macOS Version 11.4 (Build 20F71)

Steps:

  1. new profile
  2. launched Brave
  3. installed the NordVPN 2.29.1 extension (https://chrome.google.com/webstore/detail/nordvpn-%E2%80%94-1-vpn-chrome-ex/fjoaledfpmneenckfbpdfhkmimnjocfa)
  4. signed in using internal Brave credentials
  5. loaded https://test-cname.brave.software/cname-uncloaking.html
  6. followed the instructions, and added ||dev-pages.brave.software/static/images/test.jpg to brave://adblock
  7. clicked Run test
  8. confirmed that the output was Request was allowed
  9. also confirmed by re-running the test that DNS-lookup traffic went to NordVPN
example example example
Screen Shot 2021-06-16 at 4 18 25 PM Screen Shot 2021-06-16 at 4 19 18 PM Screen Shot 2021-06-16 at 4 19 24 PM

Verification passed on

Brave 1.26.63 Chromium: 91.0.4472.106 (Official Build) (64-bit)
Revision 574f7b38e4e7244c92c4675e902e8f8e3d299ea7-refs/branch-heads/4472@{#1477}
OS Ubuntu 18.04 LTS

Shields down:

image image image
Shields up:
image image
-- --

Verification passed on

<!--StartFragment-->
Brave | 1.26.63 Chromium: 91.0.4472.106&nbsp;(Official Build)&nbsp;(64-bit)
-- | --
Revision | 574f7b38e4e7244c92c4675e902e8f8e3d299ea7-refs/branch-heads/4472@{#1477}
OS | Windows&nbsp;10 OS Version 2004 (Build 19041.1052)

<!--EndFragment-->
example example example
image image image

@stephendonner stephendonner added QA Pass-macOS and removed QA/In-Progress Indicates that QA is currently in progress for that particular issue labels Jun 16, 2021
@LaurenWags LaurenWags changed the title [hackerone] adblocking DNS issue [Security] [hackerone] adblocking DNS issue Jun 21, 2021
@LaurenWags LaurenWags mentioned this issue Jun 21, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@antonok-edm antonok-edm

Labels
OS/Desktop priority/P2 A bad problem. We might uplift this to the next planned release. QA Pass-Linux QA Pass-macOS QA Pass-Win64 QA/Test-All-Platforms QA/Test-Plan-Specified QA/Yes release-notes/include security
Projects
None yet
Milestone
1.26.x - Release
Development

Successfully merging a pull request may close this issue.

Avoid CNAME uncloaking if a proxy is configured brave/brave-core
7 participants
@stephendonner @diracdeltas @kjozwiak @antonok-edm @LaurenWags @btlechowski @GeetaSarvadnya