[dolphin] [Bug 521526] New: Sandbox thumbnailers

bugzilla_noreply Tue, 16 Jun 2026 07:13:00 -0700

https://bugs.kde.org/show_bug.cgi?id=521526


            Bug ID: 521526
           Summary: Sandbox thumbnailers
    Classification: Applications
           Product: dolphin
      Version First unspecified
       Reported In:
          Platform: Flatpak
                OS: Linux
            Status: REPORTED
          Severity: normal
          Priority: NOR
         Component: view-engine: general
          Assignee: [email protected]
          Reporter: [email protected]
                CC: [email protected]
  Target Milestone: ---

DESCRIPTION
This prevents attacks and improves security (1).  Gnome Files and
Thunar/Tumbler already have weak protection against this (2,3). Additionally
COSMIC is planning on adding it in epoch 2 (4). 

[1]
https://scarybeastsecurity.blogspot.com/2016/11/0day-exploit-compromising-linux-desktop.html
[2] https://gitlab.gnome.org/GNOME/gnome-desktop/-/issues/213
[3] https://gitlab.gnome.org/GNOME/glycin/-/blob/main/glycin/src/sandbox.rs#L32
[4] https://github.com/pop-os/cosmic-files/issues/1189#event-20127287968

STEPS TO REPRODUCE
1. Check the source code
2.  See no sandboxing of thumbnailers.

OBSERVED RESULT
Thumbnailers are not sandboxed.

EXPECTED RESULT
Thumbnailers should be sandboxed using for example bubblewrap.

-- 
You are receiving this mail because:
You are watching all bug changes.

[dolphin] [Bug 521526] New: Sandbox thumbnailers

Reply via email to