This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] CVE-2017-1000366: Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]

From: "Dmitry V. Levin" <ldv at altlinux dot org>
To: libc-alpha at sourceware dot org
Date: Mon, 19 Jun 2017 19:23:16 +0300
Subject: Re: [PATCH] CVE-2017-1000366: Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]
Authentication-results: sourceware.org; auth=none
References: <20170619153832.8DC2F402AEC3C@oldenburg.str.redhat.com>

On Mon, Jun 19, 2017 at 05:38:32PM +0200, Florian Weimer wrote:
> LD_LIBRARY_PATH can only be used to reorder system search paths, which
> is not useful functionality.
> 
> This makes an exploitable unbounded alloca in _dl_init_paths unreachable
> for AT_SECURE=1 programs.
> 
> 2017-06-19  Florian Weimer  <fweimer@redhat.com>
> 
> 	[BZ #21624]
> 	CVE-2017-1000366
> 	* elf/rtld.c (process_envvars): Ignore LD_LIBRARY_PATH for
> 	__libc_enable_secure.

This is fine, please apply.


-- 
ldv

Attachment: signature.asc
Description: PGP signature

References:
- [PATCH] CVE-2017-1000366: Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]
  - From: Florian Weimer

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]