ubuntu-touch-coreapps-reviewers team mailing list archive

Thread
Date

Re: [Merge] lp:~verzegnassi-stefano/ubuntu-docviewer-app/desktop-support2 into lp:ubuntu-docviewer-app

To: Stefano Verzegnassi <stefano92.100@xxxxxxxxx>
From: Alan Pope  <alan@xxxxxxxxxx>
Date: Thu, 11 Feb 2016 19:26:30 -0000
In-reply-to: <20160203134534.5952.68759.launchpad@ackee.canonical.com>
Reply-to: mp+284901@xxxxxxxxxxxxxxxxxx
Sender: bounces@xxxxxxxxxxxxx

Review: Needs Fixing

I'm concerned about the unconfined nature of this. Normally for some core apps where there's no other way, I'd probably be okay with this. However, as we're now carrying all of LibreOffice, I'm concerned that we're opening ourselves up by having an unconfined copy of LibreOffice potentially able to be exploited by a dodgy document. That's quite a significantly sized attack surface. Especially when we don't generally roll out new builds of the docviewer with security updated LibreOffice builds very regularly.

What do you think? Should we push this feature back until we have a non-unconfined solution?

Should we bring this up with platform team to find some other way to do this?
-- 
https://code.launchpad.net/~verzegnassi-stefano/ubuntu-docviewer-app/desktop-support2/+merge/284901
Your team Ubuntu Document Viewer Developers is subscribed to branch lp:ubuntu-docviewer-app.

References

[Merge] lp:~verzegnassi-stefano/ubuntu-docviewer-app/desktop-support2 into lp:ubuntu-docviewer-app
From: Stefano Verzegnassi, 2016-02-03