Red Hat Bugzilla – Bug 176686
Permissions too open for /proc/PID/smaps
Last modified: 2007-11-30 17:11:19 EST
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr-FR; rv:1.7.12) Gecko/20050919 Firefox/1.0.7
Description of problem:
The execshield patch tightens the permissions of /proc/PID/maps
but not the new /proc/PID/smaps.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. cat /proc/1/smaps
Actual Results: I could discover the memory layout of a process I don't own.
Expected Results: Like with cat /proc/1/maps I should not have access to these informations.
Not sure about the security risk involved, but it is
inconsistent with the /proc/PID/maps permissions.
Sorry for the double click ;-)
*** This bug has been marked as a duplicate of 176687 ***