Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sandbox PdfRenderer in a Service with android:isolatedProcess #1804

Open
TheLastProject opened this issue Mar 26, 2024 · 0 comments
Open

Sandbox PdfRenderer in a Service with android:isolatedProcess #1804

TheLastProject opened this issue Mar 26, 2024 · 0 comments
Labels
common: uncommon Most users are unlikely to come across this or unexpected workflow security severity: minor Impairs non-critical functionality or suitable workarounds exist type: enhancement New feature or request

Comments

@TheLastProject
Copy link
Member

The Android documentation for PdfRenderer states:

If the file is from an untrusted source it is recommended to run the renderer in a separate, isolated process with minimal permissions to limit the impact of security exploits. Note: The constructor should be instantiated on the ERROR(/android.annotation.WorkerThread) as it can be long-running while loading the document.

While the scope of an exploit in a PDF file would be very limited (Catima has camera permission, and on old Android versions storage access, but no Internet permission) it would still be nice to improve the security whenever possible.

See #1795
@TheLastProject TheLastProject added type: enhancement New feature or request severity: minor Impairs non-critical functionality or suitable workarounds exist common: uncommon Most users are unlikely to come across this or unexpected workflow security labels Mar 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
common: uncommon Most users are unlikely to come across this or unexpected workflow security severity: minor Impairs non-critical functionality or suitable workarounds exist type: enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@TheLastProject