[Bug 19732] Security: use CAP_SYS_RAWIO during start up to map the memory below mmap_min_addr instead of permanently lowering it at install time

17 Aug 2009


      http://bugs.winehq.org/show_bug.cgi?id=19732
--- Comment #8 from Scott Ritchie scott@open-vote.org  2009-08-16 19:36:09 ---
I thought the security of CAP_SYS_RAWIO rather than mmap_min_addr wasn't to
make Wine more secure, but to make the system more secure when Wine isn't
running.  The kernel bug above, for instance, was exploitable by non-wine
programs if the user merely had Wine installed.
-- 
Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email
Do not reply to this email, post in Bugzilla using the
above URL to reply.
------- You are receiving this mail because: -------
You are watching all bug changes.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

[Bug 19732] Security: use CAP_SYS_RAWIO during start up to map the memory below mmap_min_addr instead of permanently lowering it at install time