https://bugs.freedesktop.org/show_bug.cgi?id=98894
--- Comment #3 from James Henstridge <[email protected]> ---
> Afaik, applications can't lie about /proc/[pid]/exe and the compositor could
> use .desktop files from /usr/share/applications for identification (with both
> name and icon).
It is pretty easy to spoof the result of readlink() on /proc/[pid]/exe though.
With user and mount namespaces, a regular user could bind mount a different
executable over a trusted one before executing it.
This could be detected by comparing stat() information, but that would also
give false positives when upgrading a running application.
There's not an obvious generic solution.
--
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
wayland-bugs mailing list
[email protected]
https://lists.freedesktop.org/mailman/listinfo/wayland-bugs
