Flash plugin 0-day vulnerability in the wild
Jeffrey Bastian
jbastian at redhat.com
Fri Jan 23 16:38:55 UTC 2015
On Fri, Jan 23, 2015 at 04:59:31PM +0100, drago01 wrote:
> On Fri, Jan 23, 2015 at 4:29 PM, Daniel J Walsh <dwalsh at redhat.com> wrote:
> > libflashplayer.so runs within the Mozilla-plugin I believe. If so it
> > would be confined
> > if you have not turned on the unconfined_mozilla_plugin_transition boolean.
> >
>
> # getsebool unconfined_mozilla_plugin_transition
> unconfined_mozilla_plugin_transition --> on
>
> I can't recall ever turning that on ... what is it set to by default?
It is on by default according to the mozilla_plugin_selinux(8) man page:
If you want to allow unconfined users to transition to the
Mozilla plugin domain when running xulrunner plugin-container,
you must turn on the unconfined_mozilla_plugin_transition bool‐
ean. Enabled by default.
setsebool -P unconfined_mozilla_plugin_transition 1
Jeff
More information about the devel
mailing list