Open
Bug 1381342
Opened 7 years ago
Updated 2 years ago
Enable chromium ASLR features for Windows content
Categories
(Core :: Security: Process Sandboxing, enhancement, P2)
Tracking
()
NEW
People
(Reporter: jimm, Unassigned)
Details
(Whiteboard: sb+)
Mitigation flags: MITIGATION_BOTTOM_UP_ASLR - random lower bound as the minimum user address MITIGATION_RELOCATE_IMAGE - Forces ASLR on all images MITIGATION_HIGH_ENTROPY_ASLR - increased randomness range for bottom-up ASLR MITIGATION_RELOCATE_IMAGE_REQUIRED - refuse to load dlls that can't be relocated I don't see issues with any of these for content. Note, Tom filed this bug on MITIGATION_BOTTOM_UP_ASLR - https://bugs.chromium.org/p/chromium/issues/detail?id=727708
|
Reporter | |
Comment 1•7 years ago
|
||
try run looks good - https://treeherder.mozilla.org/#/jobs?repo=try&revision=6e97346875067a87bdf619fe66aae5f3ac3b0360
|
|
Reporter | |
Updated•7 years ago
|
OS: Unspecified → Windows
Priority: -- → P2
Hardware: Unspecified → All
|
|
Reporter | |
Updated•6 years ago
|
Assignee: jmathies → nobody
|
|
Reporter | |
Comment 2•6 years ago
|
||
Hey David, lets take a look at these and see if we can knock any of these out (or close this bug as invalid). Some of these ALSR settings kick in by default. The current sandbox feature comparison spreadsheet has notes about this on individual flags.
Flags: needinfo?(davidp99)
|
|
Reporter | |
Updated•6 years ago
|
Flags: needinfo?(davidp99)
|
||
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•