Closed Bug 1599809 Opened 10 months ago Closed 10 months ago

Parenthesis bug in Mac content sandbox policy for com.apple.universalaccess.plist

Categories

(Core :: Security: Process Sandboxing, defect, P1)

Unspecified
macOS
defect

Tracking

()

RESOLVED FIXED
mozilla72
Tracking Status
firefox72 --- fixed

People

(Reporter: haik, Assigned: haik)

Details

Attachments

(1 file)

In my fix for bug 1587962, I added a bug preventing access to ~/Library/Preferences/com.apple.universalaccess.plist due to a misplaced closing parenthesis at the end of line 219 below instead of line 220. This plist file is loaded at content process startup and contains some accessibility prefs such as sticky keys enable/disable status. From my limited testing, not having access to the plist doesn't seem to cause breakage, but I think it's likely to be better for compatibility to allow the file.

   215   ; Needed for some global preferences (such as scrolling behavior)              
   216   (allow file-read-data                                                          
   217       (literal "/Library/Preferences/.GlobalPreferences.plist")                  
   218       (home-literal "/Library/Preferences/.GlobalPreferences.plist")             
   219       (home-regex #"/Library/Preferences/ByHost/\.GlobalPreferences.*"))          
   220       (home-literal "/Library/Preferences/com.apple.universalaccess.plist")
Assignee: nobody → haftandilian
Severity: normal → minor
OS: Unspecified → macOS
Priority: -- → P1
Version: unspecified → Trunk
Pushed by haftandilian@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/ef87495e4368
Parenthesis bug in Mac content sandbox policy for com.apple.universalaccess.plist r=handyman
Status: NEW → RESOLVED
Closed: 10 months ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla72
You need to log in before you can comment on or make changes to this bug.