[tbb-commits] [tor-browser/tor-browser-52.3.0esr-7.5-2] Bug 1358647 - Disallow bind/listen/accept for Linux content processes. r=gcp

gk at torproject.org gk at torproject.org
Thu Sep 21 16:14:42 UTC 2017


commit 45459c3c090384c1632ac5c2aa4323ed6df656ce
Author: Jed Davis <jld at mozilla.com>
Date:   Tue Apr 25 19:29:32 2017 -0600

    Bug 1358647 - Disallow bind/listen/accept for Linux content processes. r=gcp
    
    MozReview-Commit-ID: Cz9MKxOJnsS
    
    --HG--
    extra : rebase_source : d3ab7ff9020066d5fe9ac3121c88c85b9fde6224
---
 security/sandbox/linux/SandboxFilter.cpp | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/security/sandbox/linux/SandboxFilter.cpp b/security/sandbox/linux/SandboxFilter.cpp
index 018e9c64446c..f1520aa29e15 100644
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
@@ -531,10 +531,6 @@ public:
     case SYS_SEND:
     case SYS_SOCKET: // DANGEROUS
     case SYS_CONNECT: // DANGEROUS
-    case SYS_ACCEPT:
-    case SYS_ACCEPT4:
-    case SYS_BIND:
-    case SYS_LISTEN:
     case SYS_GETSOCKOPT:
     case SYS_SETSOCKOPT:
     case SYS_GETSOCKNAME:





More information about the tbb-commits mailing list