Open Bug 1810358 Opened 1 year ago Updated 3 months ago

Android Mozilla Screenshot Prevention Bug

Categories

(Fenix :: General, defect, P5)

Product:
Fenix
Component:
General
Type:
defect

Tracking

(Not tracked)

People

(Reporter: michaellrowley, Unassigned)

Details

(Keywords: privacy, Whiteboard: [reporter-external] [client-bounty-form] [verif?])

Attachments

(1 file, 1 obsolete file)

Screenshots.zip
730.09 KB, application/zip
Details
Attached file Screenshots.zip

The Android Firefox application (version 109) allows users to disable screenshots in private browsing mode - to the best of my knowledge this involves the use of a FLAG_SECURE layout parameter.
In various flows throughout the application, this flag is not set (possibly because it cannot be set); in some of those situations, the information visible on the screen could be sensitive to users.

Recreating this situation is as simple as toggling the screenshot prevention feature (https://support.mozilla.org/en-US/kb/private-browsing-firefox-android#w_allow-screenshot-in-private-browsing) and navigating to the same location as the attached images show. I have included a list of these situations for your convenience here:
· Tap and hold on a link
· Tap and hold on an image
· Type an address in the navigation bar
· Tap the padlock icon next to a domain in the navigation bar
· (After the previous step;) Tap the connection security label in the new dropdown (typically 'Connection is secure')

These bugs may have different remediative steps for each respective flow, ranging from hiding the keyboard when a screenshot is detected to moving sensitive information away from frames/windows that cannot have FLAG_SECURE applied to them.

Flags: sec-bounty?
Group: firefox-core-security → mobile-core-security
Component: Security → General
Product: Firefox → Fenix

The severity field is not set for this bug.
:cpeterson, could you have a look please?

For more information, please visit auto_nag documentation.

Flags: needinfo?(cpeterson)
Severity: -- → S4
Flags: needinfo?(cpeterson)
Priority: -- → P5

This is essentially an "attack" on yourself? Inconsistent with the setting but not something that could be used by a 3rd party attacker against you: doesn't need to be hidden.

Group: mobile-core-security
Status: UNCONFIRMED → NEW
Ever confirmed: true
Keywords: privacy

Hi :dveditz,

I thought that blocking screenshots in private mode was intended to prevent apps which are locally running on the device (i.e, malware, screen sharing tools) from being able to get any data from the screen which could then be used for malicious purposes?

Apologies for misunderstanding that!

Flags: sec-bounty? → sec-bounty-
Attachment #9384882 - Attachment is obsolete: true
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: