Dne 5.8.2010 19:49, Kevin Kofler napsal(a): > As much as I dislike SELinux (and would thus generally tend towards lax > SELinux policies), allowing a browser (!!!) to bypass memory protection > strikes me as an awfully bad idea. Those JavaScript JITs are a really bad > security risk. :-(
For anybody interested whole (unresolved) drama is upstream at https://bugzilla.mozilla.org/show_bug.cgi?id=506693 ... worthy reading for long lonely summer nights! And concerning SELinux generally ... I don't know, if we would know about issues like this (and many others) before it would have CVE number and exploit attached without SELinux shouting at us loudly. Matěj -- If trains stop at train stations, what happens at work stations? -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
