mirrors/logiops
1
0
Fork 0
mirror of https://github.com/PixlOne/logiops.git synced 2025-07-13 12:52:42 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Fix CVE-2024-45752

Browse Source 
Prevents arbitrary users from accessing d-bus interface. Fixes #473.
This change now requires any application using the LogiOps D-Bus
interface to run as root.
This commit is contained in:
pixl 2024-09-27 20:43:01 -04:00
parent 237fa5fbd3
commit 9495516e0c
No known key found for this signature in database
GPG Key ID: 1866C148CD593B6E
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/logid/logiops-dbus.conf.in
View File

@ -3,11 +3,12 @@
"http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd"> "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
<busconfig> <busconfig>
<policy user="root"> <policy context="default">
<allow own="pizza.pixl.LogiOps"/> <deny receive_sender="pizza.pixl.LogiOps"/>
</policy> </policy>
<policy context="default"> <policy user="root">
<allow own="pizza.pixl.LogiOps"/>
<allow send_destination="pizza.pixl.LogiOps"/> <allow send_destination="pizza.pixl.LogiOps"/>
<allow receive_sender="pizza.pixl.LogiOps"/> <allow receive_sender="pizza.pixl.LogiOps"/>
</policy> </policy>