Closed Bug 575111 Opened 15 years ago Closed 15 years ago

SELinux is preventing firefox-bin from loading /home/jhmoffe/firefox/libxul.so which requires text relocation.

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 574119

People

(Reporter: jhmoffe, Unassigned)

Details

User-Agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.9.2.6) Gecko/20100625 Firefox/3.6.6 Build Identifier: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.9.2.6) Gecko/20100625 Firefox/3.6.6 The firefox-bin application attempted to load /home/jhmoffe/firefox/libxul.so which requires text relocation. This is a potential security problem. Most libraries do not need this permission. Libraries are sometimes coded incorrectly and request this permission. The SELinux Memory Protection Tests web page explains how to remove this requirement. You can configure SELinux temporarily to allow /home/jhmoffe/firefox/libxul.so to use relocation as a workaround, until the library is fixed. Please file a bug report against this package. If you trust /home/jhmoffe/firefox/libxul.so to run correctly, you can change the file context to textrel_shlib_t. "chcon -t textrel_shlib_t '/home/jhmoffe/firefox/libxul.so'" You must also change the default file context files on the system in order to preserve them even on a full relabel. "semanage fcontext -a -t textrel_shlib_t '/home/jhmoffe/firefox/libxul.so'" The following command will allow this access:chcon -t textrel_shlib_t '/home/jhmoffe/firefox/libxul.so' Reproducible: Always
Status: UNCONFIRMED → RESOLVED
Closed: 15 years ago
Resolution: --- → DUPLICATE
Guys... this happened with b5, b6 now it's happening with b7.. placing selinux in permissive is not a long term solution - please sort this out
You need to log in before you can comment on or make changes to this bug.