Summary: | Libio vtable protection is sometimes only partially enforced | ||
---|---|---|---|
Product: | glibc | Reporter: | Max <maxkamper> |
Component: | stdio | Assignee: | Florian Weimer <fweimer> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | fweimer, luciham20 |
Priority: | P2 | Flags: | fweimer:
security-
|
Version: | 2.31 | ||
Target Milestone: | 2.36 | ||
Host: | Target: | ||
Build: | Last reconfirmed: | 2022-04-11 00:00:00 |
Description
Max
2020-04-10 17:22:27 UTC
This is a really interesting and informative post. Good job ! keep it up, hope to read your other updates. https://www.reddit.com/r/AndroidtoPCandMac/comments/f79k3w/how_to_easily_play_subway_surfers_in_pc/ This is a really interesting and informative post. Good job ! keep it up, hope to read your other updates. https://www.reddit.com/r/AndroidtoPCandMac/comments/f79k3w/how_to_easily_play_subway_surfers_in_pc/ I'm actively working on this. Patch with test case posted: https://sourceware.org/pipermail/libc-alpha/2022-April/137700.html Fixed for glibc 2.36 via: commit 198abcbb94618730dae1b3f4393efaa49e0ec8c7 Author: Florian Weimer <fweimer@redhat.com> Date: Mon Apr 11 11:30:31 2022 +0200 Default to --with-default-link=no (bug 25812) This is necessary to place the libio vtables into the RELRO segment. New tests elf/tst-relro-ldso and elf/tst-relro-libc are added to verify that this is what actually happens. The new tests fail on ia64 due to lack of (default) RELRO support inbutils, so they are XFAILed there. I'm flagging this as security- because it is just a lack of intended hardening, but not a vulnerability as such. |