Open Bug 1445030 Opened 6 years ago Updated 2 years ago

Bootstrap process should verify integrity of browser process before resuming its main thread

Tracking

()

Status:

NEW

Tracking Flags:

Tracking

Status

firefox61

---

affected

People

(Reporter: bugzilla, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: inj+)

(No longer employed by Mozilla) Aaron Klotz

Reporter

Description

•

6 years ago

In particular, we probably want to check:

Before setting our own hook on ntdll!LdrLoadDll, we should check that the prolog of ntdll!LdrLoadDll matches the code on disk (potentially restoring the original code if not);

Check that the process entry point matches the location specified in the firefox.exe executable header.

This list is not exhaustive.

(No longer employed by Mozilla) Aaron Klotz

Reporter

Updated

•

6 years ago

Priority: P2 → P3

Whiteboard: inj+

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Bootstrap process should verify integrity of browser process before resuming its main thread

Categories

(Core :: General, enhancement, P3)

Tracking

()

People

(Reporter: bugzilla, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: inj+)

Crash Data

Security

(public)

User Story

Description

Updated

Updated