SELinux violation with 1Password?

Question

SELinux shows a security violation for 1Password:
```
SELinux is preventing 1password from using the execheap access on a process.

*****  Plugin allow_execheap (53.1 confidence) suggests   ********************

If you do not think 1password should need to map heap memory that is both writable and executable.
Then you need to report a bug. This is a potentially dangerous access.
Do
contact your security administrator and report this issue.

*****  Plugin catchall_boolean (42.6 confidence) suggests   ******************

If you want to allow selinuxuser to execheap
Then you must tell SELinux about this by enabling the 'selinuxuser_execheap' boolean.

Do
setsebool -P selinuxuser_execheap 1
```

I can't tell if this is a security problem but it should be addressed by the 1Password developers.

1Password Version: 8.10.23
Extension Version: 2.15.1
OS Version: Fedora 39
Browser: Firefox

starborn · Answer

Ok, one week later and still no answer from 1Password. That's a little disappointing to be honest, especially when it comes to security issues.

Forum Discussion

SELinux violation with 1Password?

1 Reply

Featured discussions

November at 1Password: the Access-Trust gap, planning your estate, and an updated unlock experience

Recent discussions

1Password 8.11.18: Japanese mistranslation persists

Support for Imput's Helium Browser

Feature request: encrypted 1pex

Cancelled Account, But Got Billed for 0.95 Cents

Has the iOS 26 passkey autofill UI changed?