Comment 3 for bug 823185

Revision history for this message
Kees Cook (kees) wrote :

- why does this daemon need to run as root?
- org.freedesktop.color-manager.modify-profile appears to read any file on the filesystem. It reads the entire file (e.g. DoS with /dev/zero), and might do something via lcms parsing, but I haven't examined what sort of issues are in lcms for reading arbitrary files.
- by default, SearchVolumes is true in the /etc conf file, which means every inserted volume will be searched for color profiles, meaning that the above issue is true for arbitrary volume mounts too (attacker wouldn't need dbus access even).