mirror of
https://github.com/fergalmoran/ladybird.git
synced 2026-02-01 05:14:58 +00:00
e8857f9b2d
The idea of locking the process veil in CrashReproter is well intentioned, but ultimately frought with issues. The fundamental premise is a bit flawed, as we are using the crashing program as input to dynamically add new paths to the process veil. This means that an attacker can potentially produce a custom or malformed binary to trick CrashReporter into allowing an arbitrary path to be read.
14 KiB
14 KiB