-
Notifications
You must be signed in to change notification settings - Fork 6.6k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix Security Elevation of Privilege in Chrome installer during update
We use the `new_setup_exe` directory as the working directory for `ArchivePatchHelper::UncompressAndPatch`. For System installs, this directory would be under %ProgramFiles% (a directory that only admins can write to by default) and hence a secure location. Bug: 1279188 Change-Id: I8f65ff67d588c46d81abc09616a08e19be2820e5 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3351102 Auto-Submit: S. Ganesh <ganesh@chromium.org> Reviewed-by: Greg Thompson <grt@chromium.org> Commit-Queue: Greg Thompson <grt@chromium.org> Cr-Commit-Position: refs/heads/main@{#955697}
- Loading branch information
1 parent
705ab01
commit 368a755
Showing
2 changed files
with
25 additions
and
29 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters