Changes

|-

|-

| Service access control bypass (sm:h, smhax, probably other names)

| Service access control bypass (sm:h, smhax, probably other names)

| Prior to [[3.0.1]], the service manager ("sm") built-in system module treats a user as though it has full permissions if the user creates a new "sm:" port session but bypasses [[Services_API#Initialize|initialization]].

| Prior to [[3.0.1]], the ''service manager'' (sm) built-in system module treats a user as though it has full permissions if the user creates a new "sm:" port session but bypasses [[Services_API#Initialize|initialization]]. This is due to the other sm commands skipping the service ACL check for Pids <= 7 (i.e. all kernel bundled modules) and that skipping the initialization command leaves the Pid field uninitialized.

In [[3.0.1]], "sm" returns error code 0x415 if [[Services_API#Initialize|Initialize]] has not been called yet.

In [[3.0.1]], sm returns error code 0x415 if [[Services_API#Initialize|Initialize]] has not been called yet.

| Acquiring, registering, and unregistering arbitrary services

| Acquiring, registering, and unregistering arbitrary services

| [[3.0.1]]

| [[3.0.1]]