Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 5e1f7ed7 authored by Daniel Mentz's avatar Daniel Mentz
Browse files

Revert "proc: smaps: Allow smaps access for CAP_SYS_RESOURCE" 



This reverts commit f0ce0eee.

This fixes CVE-2017-0710.

SELinux allows more fine grained control: We grant processes that need
access to smaps CAP_SYS_PTRACE but prohibit them from using ptrace
attach().

Bug: 34951864
Bug: 36468447
Change-Id: I57a47771177ee61561a7312bb6e6d78af887b5dd
Signed-off-by: default avatarDaniel Mentz <danielmentz@google.com>
parent 1cb8bb45
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment