Bug#876333: thunderbird: AppArmor profile allows mmap executables from user writable directories

Vincas Dargis Wed, 20 Sep 2017 23:49:01 -0700

Package: thunderbird
Version: 1:52.3.0-4~deb8u2
Severity: normal
Tags: upstream


Dear Maintainer,

/etc/apparmor.d/usr.bin.thunderbird has these lines:

owner /tmp/** m,
owner /var/tmp/** m,

Is this really necesarry? If Thunderbir actually tries to mmap files with
executable flags, I believe it should be reported as a bug upstream.

>From AppArmor wiki [0]:
```
Short form permissions map to

m - mmap_x, mprot_wx

mmap_x - mmap a file executable
mprot_wx - allow transitioning an mmap from w to x, (this sticks for the
lifetime of the mmap even if w is removed before trying to apply x

```

I will try to use Thunderbird profile with these lines commented out, I'll see
if DENIES appear.

By the way, I see same lines on usr.lib.firefox.firefox, maybe it's just old
bug and blind copy-paste?

[0]http://wiki.apparmor.net/index.php/AppArmor_Core_Policy_Reference#File_access_rules



-- System Information:
Debian Release: 8.9
  APT prefers oldstable-updates
  APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages thunderbird depends on:
ii  debianutils               4.4+b1
ii  fontconfig                2.11.0-6.3+deb8u1
ii  libatk1.0-0               2.14.0-1
ii  libc6                     2.19-18+deb8u10
ii  libcairo2                 1.14.0-2.1+deb8u2
ii  libdbus-1-3               1.8.22-0+deb8u1
ii  libdbus-glib-1-2          0.102-1
ii  libevent-2.0-5            2.0.21-stable-2+deb8u1
ii  libffi6                   3.1-2+deb8u1
ii  libfontconfig1            2.11.0-6.3+deb8u1
ii  libfreetype6              2.5.2-3+deb8u2
ii  libgcc1                   1:4.9.2-10
ii  libgdk-pixbuf2.0-0        2.31.1-2+deb8u6
ii  libglib2.0-0              2.42.1-1+b1
ii  libgtk2.0-0               2.24.25-3+deb8u2
ii  libhunspell-1.3-0         1.3.3-3
ii  libpango-1.0-0            1.36.8-3
ii  libpangocairo-1.0-0       1.36.8-3
ii  libpangoft2-1.0-0         1.36.8-3
ii  libpixman-1-0             0.32.6-3
ii  libstartup-notification0  0.12-4
ii  libstdc++6                4.9.2-10
ii  libx11-6                  2:1.6.2-3
ii  libx11-xcb1               2:1.6.2-3
ii  libxcb-shm0               1.10-3+b1
ii  libxcb1                   1.10-3+b1
ii  libxcomposite1            1:0.4.4-1
ii  libxdamage1               1:1.1.4-2+b1
ii  libxext6                  2:1.3.3-1
ii  libxfixes3                1:5.0.1-2+b2
ii  libxrender1               1:0.9.8-1+b1
ii  libxt6                    1:1.1.4-1+b1
ii  psmisc                    22.21-2
ii  x11-utils                 7.7+2
ii  zlib1g                    1:1.2.8.dfsg-2+b1

Versions of packages thunderbird recommends:
ii  hunspell-en-us [hunspell-dictionary]  20070829-6+deb8u1
ii  lightning                             1:52.3.0-4~deb8u2

Versions of packages thunderbird suggests:
ii  apparmor          2.9.0-3
ii  fonts-lyx         2.1.2-2
ii  libgssapi-krb5-2  1.12.1+dfsg-19+deb8u2

-- no debconf information

Bug#876333: thunderbird: AppArmor profile allows mmap executables from user writable directories

Reply via email to