Package: firefox
Version: 1.0.7-1
Severity: normal
When Firefox executes external programs, it passes to them all file
descriptors it has open. This is undesirable, especially in the case of
/dev/dsp, since two programs cannot use it at the same time. This bug is
present in version 1.5, as well.
Steps to reproduce:
* Install flash plugin from Macromedia.
* Open some flash file that plays sound. Firefox should now have /dev/dsp
open:
$ lsof /dev/dsp
COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME
firefox-b 25038 hippy 43u CHR 14,3 2144 /dev/dsp0
* Without closing the flash, ask Firefox to open some file in an external
program. We can, for an example, open a pdf file in xpdf. Firefox will
pass its file descriptors to xpdf:
$ lsof /dev/dsp
COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME
xpdf.bin 17363 hippy 28u CHR 14,3 2144 /dev/dsp0
firefox-b 25038 hippy 28u CHR 14,3 2144 /dev/dsp0
Expected behaviour:
Firefox shouldn't pass any file descriptors other than
std{in,out,err} to external programs.
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (x86_64)
Shell: /bin/sh linked to /bin/dash
Kernel: Linux 2.6.15
Locale: LANG=C, LC_CTYPE=pl_PL.UTF8 (charmap=UTF-8)
Versions of packages mozilla-firefox depends on:
ii debianutils 2.15.2 Miscellaneous utilities specific t
ii fontconfig 2.3.2-1.1 generic font configuration library
ii libatk1.0-0 1.10.3-1 The ATK accessibility toolkit
ii libc6 2.3.5-8 GNU C Library: Shared libraries an
ii libfontconfig1 2.3.2-1.1 generic font configuration library
ii libfreetype6 2.1.7-2.4 FreeType 2 font engine, shared lib
ii libgcc1 1:4.0.2-5 GCC support library
ii libglib2.0-0 2.8.5-1 The GLib library of C routines
ii libgtk2.0-0 2.8.9-2 The GTK+ graphical user interface
ii libidl0 0.8.5-1 library for parsing CORBA IDL file
ii libjpeg62 6b-11 The Independent JPEG Group's JPEG
ii libkrb53 1.4.3-5 MIT Kerberos runtime libraries
ii libpango1.0-0 1.10.1-2 Layout and rendering of internatio
ii libpng12-0 1.2.8rel-5 PNG library - runtime
ii libstdc++6 4.0.2-5 The GNU Standard C++ Library v3
ii libx11-6 6.8.2.dfsg.1-11 X Window System protocol client li
ii libxext6 6.8.2.dfsg.1-11 X Window System miscellaneous exte
ii libxft2 2.1.7-1 FreeType-based font drawing librar
ii libxinerama1 6.8.2.dfsg.1-11 X Window System multi-head display
ii libxp6 6.8.2.dfsg.1-11 X Window System printing extension
ii libxt6 6.8.2.dfsg.1-11 X Toolkit Intrinsics
ii psmisc 21.8-1 Utilities that use the proc filesy
ii xlibs 6.8.2.dfsg.1-11 X Window System client libraries m
ii zlib1g 1:1.2.3-9 compression library - runtime
mozilla-firefox recommends no packages.
-- no debconf information
