Secure testing team - Aug 2012 - Bug#684624: [chromium] Does nostart due to incorrect assumption about permission of /run/shm

Package: chromium
Version: 21.0.1180.75~r150248-1
Severity: normal
Tags: security
X-Debbugs-CC: secure-testing-team at lists.alioth.debian.org

--- Please enter the report below this line. ---

On startup, chromium reports the following error:

[16213:16229:21996263860:ERROR:shared_memory_posix.cc(171)] Creating shared 
memory in /dev/shm/.org.chromium.Chromium.mmqQyr failed: Permission denied
[16213:16229:21996263931:ERROR:shared_memory_posix.cc(174)] Unable to 
access(W_OK|X_OK) /dev/shm: Permission denied
[16213:16229:21996263956:FATAL:shared_memory_posix.cc(176)] This is frequently 
caused by incorrect permissions on /dev/shm.  Try ''sudo chmod 1777
/dev/shm''
to fix.
Aborted

However, the debian initscript package in /lib/init/mount-functions.sh sets 
the permission to 755.

The recommendation made by chromium seems potentially dangerous since it 
allows anyone to write to this directory.


--- System information. ---
Architecture: amd64
Kernel:       Linux 3.4-trunk-amd64

Debian Release: wheezy/sid
  500 unstable        ftp.us.debian.org 
  500 stable          deb.opera.com 
    1 experimental    ftp.us.debian.org 

--- Package information. ---
Depends                         (Version) | Installed
=========================================-+-==================gconf-service     
| 3.2.5-1+build1
libasound2                    (>= 1.0.16) | 1.0.25-4
libatk1.0-0                   (>= 1.12.4) | 2.4.0-2
libbz2-1.0                                | 1.0.6-4
libc6                           (>= 2.11) | 2.13-35
libcairo2                      (>= 1.6.0) | 1.12.2-2
libcups2                       (>= 1.4.0) | 1.5.3-2
libdbus-1-3                   (>= 1.2.14) | 1.6.2-2
libevent-2.0-5         (>= 2.0.10-stable) | 2.0.19-stable-3
libexpat1                      (>= 2.0.1) | 2.1.0-1
libflac8                       (>= 1.2.1) | 1.2.1-6
libfontconfig1                 (>= 2.9.0) | 2.9.0-7
libfreetype6                   (>= 2.3.9) | 2.4.9-1
libgcc1                      (>= 1:4.1.1) | 1:4.7.1-6
libgconf-2-4                  (>= 2.31.1) | 3.2.5-1+build1
libgcrypt11                    (>= 1.4.5) | 1.5.0-3
libgdk-pixbuf2.0-0            (>= 2.22.0) | 2.26.1-1
libglib2.0-0                  (>= 2.18.0) | 2.32.3-1
libgnome-keyring0             (>= 2.22.2) | 3.4.1-1
libgtk2.0-0                   (>= 2.24.0) | 2.24.10-2
libjpeg8                          (>= 8c) | 8d-1
libnspr4                    (>= 2:4.9-2~) | 2:4.9.2-1
libnss3                 (>= 2:3.13.4-2~)  | 2:3.13.5-1
 OR libnss3-1d                (>= 3.12.3) | 2:3.13.5-1
libpango1.0-0                 (>= 1.22.0) | 1.30.0-1
libpng12-0                  (>= 1.2.13-4) | 1.2.49-2
libpulse0                     (>= 0.99.1) | 2.0-5
libspeex1                (>= 1.2~beta3-1) | 1.2~rc1-6
libstdc++6                       (>= 4.6) | 4.7.1-6
libudev0                         (>= 146) | 175-5
libx11-6                                  | 2:1.5.0-1
libxcomposite1               (>= 1:0.3-1) | 1:0.4.3-2
libxext6                                  | 2:1.3.1-2
libxfixes3                                | 1:5.0-4
libxml2                        (>= 2.7.4) | 2.8.0+dfsg1-5
libxrender1                               | 1:0.9.7-1
libxslt1.1                    (>= 1.1.25) | 1.1.26-13
libxss1                                   | 1:1.2.2-1
zlib1g                       (>= 1:1.2.0) | 1:1.2.7.dfsg-13
xdg-utils                                 | 1.1.0~rc1+git20111210-6
chromium-inspector                        | 21.0.1180.75~r150248-1


Package''s Recommends field is empty.

Suggests           (Version) | Installed
============================-+-==========chromium-l10n                |
21.0.1180.75~r150248-1