mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
gecko-dev/security
История
Toshihito Kikuchi d77b5bdf35 Bug 1662560 - Always retrieve the imagebase of the child process's executable from a process handle. r=mhowell 
The earlier fix ea452bb92e6a proved the executable's imagebase in a child
process is not always the same as the local imagebase.  This patch applies
the new approach to retieve the imagebase from a handle to all channels.

Interestingly, we observed the launcher failures at `VirtualProtectEx` only
when launching a sandboxed process, not when launching the browser process.
In the long term, we may need to take care of all `WriteProcessMemory` calls
for a child process for greater safety, but given that observation, this
patch only updates `RestoreImportDirectory` and `InitializeDllBlocklistOOP`.

Differential Revision: https://phabricator.services.mozilla.com/D90316
 		2020-09-15 21:10:06 +00:00
..
apps Bug 1660580 - avoid CERTCertificate in AppTrustDomain and AppSignatureVerification r=kjacobs,bbeurdouche 2020-09-09 22:45:42 +00:00
certverifier Bug 1664011 - avoid CERTCertificate in nsIX509CertValidity implementation r=rmf 2020-09-11 17:20:25 +00:00
ct
mac/hardenedruntime
manager Bug 1654807 - update thin-vec to 0.2.1 for potential endianess fix. r=froydnj 2020-09-14 17:32:40 +00:00
nss Bug 1660509 - land NSS 2a17c8655a74 UPGRADE_NSS_RELEASE, r=jcj 2020-09-14 17:06:12 +00:00
sandbox Bug 1662560 - Always retrieve the imagebase of the child process's executable from a process handle. r=mhowell 2020-09-15 21:10:06 +00:00
.eslintrc.js
generate_certdata.py
generate_mapfile.py
moz.build
nss.symbols Bug 1661543 - Backed out 1 changesets (bug 1651449) for performance regression. a=backout CLOSED TREE 2020-08-27 22:31:36 +02:00