Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-12-04 19:33:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
956d57e7f2
gecko-dev/security/sandbox
History
Jed Davis 09db14abce Bug 1439057 - Tighten /dev/shm access in Linux content sandbox policy. r=gcp 
This patch uses the shared memory name prefixes introduced in bug 1447867
to prevent access to /dev/shm files of other applications or other
processes within the same browser instance.

When a shared memory implementation that doesn't use shm_open is available
(specifically, the memfd_create support to be added in bug 1440203),
/dev/shm access is completely denied.

MozReview-Commit-ID: L2ylG5KrXTU
2018-07-31 10:41:29 -06:00
..
chromium Bug 1461421 Use OffsetOf to calculate the location of parameters_ rather than making assumptions about the parent class r=bobowen 2018-06-07 13:08:27 -05:00
chromium-shim Bug 1461421 Add OffsetOf patch to chromium patch directory r=bobowen 2018-06-08 12:28:26 -05:00
common Bug 1475722 - Mac Flash sandbox causes empty file upload dialogs on OS X 10.9, 10.10 r=Alex_Gaynor 2018-07-17 17:30:44 -07:00
linux Bug 1439057 - Tighten /dev/shm access in Linux content sandbox policy. r=gcp 2018-07-31 10:41:29 -06:00
mac Bug 1475722 - Mac Flash sandbox causes empty file upload dialogs on OS X 10.9, 10.10 r=Alex_Gaynor 2018-07-17 17:30:44 -07:00
test
win Bug 1460022: Part 9 - Update sandboxing code to work with revised DLL interceptor interface; r=bobowen 2018-06-27 11:51:29 -06:00
moz.build