Closed Bug 1822308 Opened 3 years ago Closed 3 years ago

Re-tighten GPU sandbox's filesystem access

Categories

(Core :: Security: Process Sandboxing, defect, P1)

Product:
Core
Component:
Security: Process Sandboxing
Version:
Firefox 113
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
113 Branch
Tracking Flags:
Tracking Status
relnote-firefox --- 113+
firefox112 --- wontfix
firefox113 --- fixed

People

(Reporter: cmartin, Assigned: cmartin)

References

Details

Attachments

(1 file)

Bug 1822308 - Re-tighten GPU sandbox's filesystem access
48 bytes, text/x-phabricator-request
Details | Review
No description provided.
Assignee: nobody → cmartin
Status: NEW → ASSIGNED
Severity: -- → S3
status-firefox112: --- → wontfix
Depends on: 1816559
Priority: -- → P1
Pushed by cmartin@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/e1be870fecfb Re-tighten GPU sandbox's filesystem access

https://hg.mozilla.org/mozilla-central/rev/e1be870fecfb

Status: ASSIGNED → RESOLVED
Closed: 3 years ago
status-firefox113: affectedfixed
Resolution: --- → FIXED
Target Milestone: --- → 113 Branch

Release Note Request (optional, but appreciated)
[Why is this notable]: It is a substantial security improvement to our GPU sandbox, and if users notice any weird behavior it might help them self-diagnose.
[Affects Firefox for Android]: No
[Suggested wording]: "The GPU Sandbox has been further tightened to limit access to sensitive parts of the filesystem"
[Links (documentation, blog post, etc)]:

relnote-firefox: --- → ?

Added to the Fx113 Nightly relnotes.

relnote-firefox: ?113+
Regressions: 1859708

This was a re-tightening of bug 1799470.

Depends on: 1799470
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: