Commit efeee876 authored by Daniel Mentz's avatar Daniel Mentz
Browse files

Revert "proc: smaps: Allow smaps access for CAP_SYS_RESOURCE" 



This reverts commit d590b5b6.

This fixes CVE-2017-0710.

SELinux allows more fine grained control: We grant processes that need
access to smaps CAP_SYS_PTRACE but prohibit them from using ptrace
attach().

Bug: 34951864
Bug: 36468447
Change-Id: I081033cf8fd7058b41cb464200b544e24651372d
Signed-off-by: default avatarDaniel Mentz <danielmentz@google.com>
parent f902a2b4
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment