trust-store should prevent from privilege escalation
Bug #1518883 reported by
Thomas Voß
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Canonical System Image |
Fix Released
|
High
|
Unassigned | ||
| trust-store |
In Progress
|
High
|
Thomas Voß | ||
Bug Description
trust-store instances should prevent from privilege escalation attacks by ensuring that any given trust-store instance rejects requests as denied if the request originated from an app running under a different user than the trust-store instance itself.
Related branches
lp:~thomas-voss/trust-store/fix-1518883
- Alberto Mardegan (community): Approve
- PS Jenkins bot: Pending (continuous-integration) requested
-
Diff: 439 lines (+291/-18)10 files modifiedpo/de.po (+5/-5)
po/ne.po (+31/-0)
po/sr.po (+5/-5)
src/CMakeLists.txt (+3/-0)
src/core/trust/daemon.cpp (+6/-1)
src/core/trust/mir/agent.cpp (+0/-7)
src/core/trust/privilege_escalation_prevention_agent.cpp (+52/-0)
src/core/trust/privilege_escalation_prevention_agent.h (+63/-0)
tests/CMakeLists.txt (+20/-0)
tests/privilege_escalation_prevention_agent_test.cpp (+106/-0)
- PS Jenkins bot: Approve (continuous-integration)
- Ubuntu Phablet Team: Pending requested
-
Diff: 326 lines (+250/-1)6 files modifiedsrc/CMakeLists.txt (+3/-0)
src/core/trust/daemon.cpp (+6/-1)
src/core/trust/privilege_escalation_prevention_agent.cpp (+52/-0)
src/core/trust/privilege_escalation_prevention_agent.h (+63/-0)
tests/CMakeLists.txt (+20/-0)
tests/privilege_escalation_prevention_agent_test.cpp (+106/-0)
| Changed in trust-store: | |
| status: | New → In Progress |
| Changed in canonical-devices-system-image: | |
| importance: | Undecided → High |
| milestone: | none → ww02-2016 |
| status: | New → Fix Committed |
| Changed in canonical-devices-system-image: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
