diff --git a/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp b/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp index abe7e16f3051..5154989ce0da 100644 --- a/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp +++ b/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp @@ -495,6 +495,11 @@ void SandboxBroker::SetSecurityLevelForContentProcess(int32_t aSandboxLevel, "With these static arguments AddRule should never fail, " "what happened?"); } else { + // Add rule to allow access to user specific fonts. + AddCachedDirRule(mPolicy, sandbox::TargetPolicy::FILES_ALLOW_READONLY, + sLocalAppDataDir, + NS_LITERAL_STRING("\\Microsoft\\Windows\\Fonts\\*")); + // Add rule to allow read access to installation directory. AddCachedDirRule(mPolicy, sandbox::TargetPolicy::FILES_ALLOW_READONLY, sBinDir, NS_LITERAL_STRING("\\*"));