{"id":10233,"date":"2014-12-05T16:48:52","date_gmt":"2014-12-05T21:48:52","guid":{"rendered":"http:\/\/mjtsai.com\/blog\/?p=10233"},"modified":"2014-12-05T16:48:52","modified_gmt":"2014-12-05T21:48:52","slug":"core-graphics-logging-input-data-to-tmp-directory","status":"publish","type":"post","link":"https:\/\/mjtsai.com\/blog\/2014\/12\/05\/core-graphics-logging-input-data-to-tmp-directory\/","title":{"rendered":"Core Graphics Logging Input Data to \/tmp Directory"},"content":{"rendered":"<p><a href=\"https:\/\/www.mozilla.org\/en-US\/security\/advisories\/mfsa2014-90\/\">Mozilla<\/a> (via <a href=\"https:\/\/twitter.com\/logodaedalus\/status\/540332145777319937\">Jacob Garbe<\/a>):<\/p>\n<blockquote cite=\"https:\/\/www.mozilla.org\/en-US\/security\/advisories\/mfsa2014-90\/\">\n<p>Security researcher <strong>Kent Howard<\/strong> reported an Apple issue\npresent in OS X 10.10 (Yosemite) where log files are created by the\n<code>CoreGraphics<\/code> framework of OS X in the <code>\/tmp<\/code> local\ndirectory. These log files contain a record of all inputs into Mozilla programs\nduring their operation. In versions of OS X from versions 10.6 through 10.9, the\n<code>CoreGraphics<\/code> had this logging ability but it was turned off by\ndefault. In OS X 10.10, this logging was turned on by default for some\napplications that use a custom memory allocator, such as <code>jemalloc<\/code>,\nbecause of an initialization bug in the framework. This issue has been addressed\nin Mozilla products by explicitly turning off the framework's logging of input\nevents. On vulnerable systems, this issue can result in private data such as\nusernames, passwords, and other inputed data being saved to a log file on the\nlocal system.<\/p>\n<\/blockquote>\n<p>I have been using Firefox 33.1 and did not see any <tt>CGLog_<\/tt> files on my Mac.<\/p>","protected":false},"excerpt":{"rendered":"<p>Mozilla (via Jacob Garbe): Security researcher Kent Howard reported an Apple issue present in OS X 10.10 (Yosemite) where log files are created by the CoreGraphics framework of OS X in the \/tmp local directory. These log files contain a record of all inputs into Mozilla programs during their operation. In versions of OS X [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"apple_news_api_created_at":"","apple_news_api_id":"","apple_news_api_modified_at":"","apple_news_api_revision":"","apple_news_api_share_url":"","apple_news_coverimage":0,"apple_news_coverimage_caption":"","apple_news_is_hidden":false,"apple_news_is_paid":false,"apple_news_is_preview":false,"apple_news_is_sponsored":false,"apple_news_maturity_rating":"","apple_news_metadata":"\"\"","apple_news_pullquote":"","apple_news_pullquote_position":"","apple_news_slug":"","apple_news_sections":"\"\"","apple_news_suppress_video_url":false,"apple_news_use_image_component":false,"footnotes":""},"categories":[2],"tags":[279,30,32,903,410,355,178,1078],"class_list":["post-10233","post","type-post","status-publish","format-standard","hentry","category-technology","tag-firefox","tag-mac","tag-macapp","tag-mac-os-x-10-10-yosemite","tag-mozilla","tag-privacy","tag-quartz","tag-thunderbird"],"apple_news_notices":[],"_links":{"self":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts\/10233","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/comments?post=10233"}],"version-history":[{"count":1,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts\/10233\/revisions"}],"predecessor-version":[{"id":10234,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts\/10233\/revisions\/10234"}],"wp:attachment":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/media?parent=10233"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/categories?post=10233"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/tags?post=10233"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}