kernel/vm: Block non-root teams from inspecting other teams' memory properties.

2025-01-18 04:28:52 +01:00 · 2025-01-15 14:54:05 -05:00 · 2025-01-15 14:54:05 -05:00 · 07ed8d0df8
commit 07ed8d0df8
parent f3f347f90d
1 changed files with 4 additions and 0 deletions
--- a/src/system/kernel/vm/vm.cpp
+++ b/src/system/kernel/vm/vm.cpp
@ -6595,6 +6595,10 @@ _user_get_memory_properties(team_id teamID, const void* address,
 	if (!IS_USER_ADDRESS(_protected) || !IS_USER_ADDRESS(_lock))
 		return B_BAD_ADDRESS;

+	if (teamID != B_CURRENT_TEAM && teamID != team_get_current_team_id()
+			&& geteuid() != 0)
+		return B_NOT_ALLOWED;
+
 	AddressSpaceReadLocker locker;
 	status_t error = locker.SetTo(teamID);
 	if (error != B_OK)