Open
Bug 1379635
Opened 7 years ago
Updated 2 years ago
On Windows narrow down write access to TEMP dir for leak/bloat logging.
Categories
(Core :: Security: Process Sandboxing, enhancement, P3)
Tracking
()
NEW
People
(Reporter: bobowen, Unassigned)
References
(Blocks 2 open bugs)
Details
(Whiteboard: sb+)
We allowed this broadly early on, but it looks like only bloat logging needs this at the moment. By narrowing this down we should be able to run security/sandbox/test/browser_content_sandbox_fs.js in DEBUG builds.
Comment 1•7 years ago
|
||
FWIW, here's what we do on macOS: https://dxr.mozilla.org/mozilla-central/source/dom/ipc/ContentChild.cpp?q=ContentChild.cpp&redirect_type=direct#1549-1560
Updated•7 years ago
|
Whiteboard: sb+
Updated•7 years ago
|
Priority: -- → P3
Comment 2•5 years ago
|
||
Hi, just wanted to quickly introduce myself! I'm Joanna, and I'll be working with :handyman to help fix this bug.
Updated•5 years ago
|
Assignee: nobody → jjo.su1822
Comment hidden (offtopic) |
Updated•5 years ago
|
Blocks: CVE-2023-23597
Updated•2 years ago
|
Assignee: jjo.su1822 → nobody
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•