http://bugzilla.suse.com/show_bug.cgi?id=1151418
http://bugzilla.suse.com/show_bug.cgi?id=1151418#c3
--- Comment #3 from Malte Kraus ---
So, the GetProcFile/GetProcFd methods of org.gnome.Sysprof3.Service allow
getting the contents any file in the system, e.g. through /proc/1/root/. (But
there are certainly many more, since there is no attempt to restrict access
except by the prefix /proc and /sys.)
I don't feel such an action is acceptable after an authentication prompt saying
"Authentication is required to profile the system.". All calls by the client to
these functions that I could find are reads of "/proc/mounts",
"/proc/kallsyms", and "/sys/devices/system/cpu/cpu%u/cpufreq/scaling_cur_freq".
Since these files are all readable for everyone without any special
permissions, I'd suggest to just rip out the functions completely and replace
them with calls to g_file_get_contents/open. (I'd also be happy with a
whitelist of exactly these paths, but that seems like it'd be more work.)
(I'm not done looking for other issues, but I wanted to notify you of this
sooner rather than later.)
--
You are receiving this mail because:
You are on the CC list for the bug.