Bug 250339

Summary: Local Network Access: Apply Secure Context Restriction to private IPv6 address space
Product: WebKit Reporter: Ryan Reno <rreno>
Component: Page LoadingAssignee: Nobody <webkit-unassigned>
Status: NEW ---    
Severity: Normal CC: beidson, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on:    
Bug Blocks: 250607    

Description Ryan Reno 2023-01-09 14:30:08 PST 
We don't presently or as of webkit.org/b/250330 block non-secure public contexts from accessing resources in the IPv6 private address space. We only check against private IPv4 addresses.
Comment 1 Radar WebKit Bug Importer 2023-01-09 14:30:50 PST 
<rdar://problem/104045830>