SELinux violation with 1Password?

starborn
starborn
Community Member
in Linux

SELinux shows a security violation for 1Password:

SELinux is preventing 1password from using the execheap access on a process.


*****  Plugin allow_execheap (53.1 confidence) suggests   ********************

If you do not think 1password should need to map heap memory that is both writable and executable.
Then you need to report a bug. This is a potentially dangerous access.
Do
contact your security administrator and report this issue.

*****  Plugin catchall_boolean (42.6 confidence) suggests   ******************

If you want to allow selinuxuser to execheap
Then you must tell SELinux about this by enabling the 'selinuxuser_execheap' boolean.

Do
setsebool -P selinuxuser_execheap 1

I can't tell if this is a security problem but it should be addressed by the 1Password developers.

1Password Version: 8.10.23
Extension Version: 2.15.1
OS Version: Fedora 39
Browser: Firefox

Comments

  • starborn
    starborn
    Community Member

    Ok, one week later and still no answer from 1Password. That's a little disappointing to be honest, especially when it comes to security issues.

This discussion has been closed.