mirror of
https://github.com/fergalmoran/ladybird.git
synced 2026-01-26 02:16:38 +00:00
e8857f9b2d
The idea of locking the process veil in CrashReproter is well intentioned, but ultimately frought with issues. The fundamental premise is a bit flawed, as we are using the crashing program as input to dynamically add new paths to the process veil. This means that an attacker can potentially produce a custom or malformed binary to trick CrashReporter into allowing an arbitrary path to be read.