Executable MIME handler risks

Over the last few months, we (Patrick and I) have done a substantial amount of research into, and discussion with others about, the security risks of executable MIME handlers. This is a log of the discussions, posts, and CVEs related to this, several of which were discovered by us.

Further conversations about this should be edited into this post or posted underneath as new posts. (I think we traditionally do new posts, but I’d kind of like to use edits for this to keep all of the links in one place.)

3 Likes

How were these risks initially stumbled upon and what can be done to mitigate it?

1 Like

I was trying to find a RAM-efficient way of triggering PCManFM-Qt over D-Bus, ran into some weird behavior when launching it, mentioned it on the Whonix forums, then Qubes OS’s lead dev asked a question that led down a rabbit hole.

Many of the issues have been patched already, and the biggest one that isn’t patched (PCManFM-Qt) has been mitigated through a D-Bus shim in Kicksecure:

The next largest unpatched one is Wine. For that, the best mitigation is, don’t install Wine from WineHQ. (Maybe we should add a systemcheck test to see if WineHQ’s repos are enabled and warn if so…)

1 Like