| HN Mirror

Y	Hacker News new \| ask \| show \| jobs


	by soiax 669 days ago
	No. There is a reason the author keeps repeating "arbitrary code execution in the Chrome renderer process." Because it's there, not in the browser process.

1 comments

> If successful, on Ubuntu 22.04, it should call launch xcalc when calc.html is opened in Chrome.

Then how does this work? It doesn't look like the provided build flags disable any sandbox that the distributed build doesn't.

You can disable it runtime, with --no-sandbox command line option.