This is the mail archive of the mailing list for the GDB project.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: [RFA] Add $pdir as entry for libthread-db-search-path.

On Mon, May 2, 2011 at 12:14 PM, Jan Kratochvil
<> wrote:
> On Sun, 01 May 2011 20:34:02 +0200, Doug Evans wrote:
>> 1) This is a patch for the FSF tree, not Fedora.
>> If this kind of security concern is the rule for the FSF tree
> As both libthread_db and pretty printers have the same attack surface (*) as
> ? ? ? ?DWARF expression overflow
> ? ? ? ?
> where this CVE lists all public GNU/Linux vendors I do not think such security
> requirement is Fedora specific.
> (*) That is a foreign binary which is enough to just load into GDB.
> OTOH the other attack
> ? ? ? ?.gdbinit current directory execution
> ? ? ? ?
> also lists multiple GNU/Linux vendors and the issue is not yet fixed in FSF
> GDB. ?But this is IMO just still work in prograss / unfinished, not rejected:
> ? ? ? ?[RFA] .gdbinit security (revived) [incl doc]
> ? ? ? ?

Thanks, but I'm still stuck ...

Question for the group at large (and I it doesn't matter to me which
way we go, I just want to make forward progress ...).
Do we enforce such security concerns in FSF gdb?
And if so, let's get these issues documented (I have a pet peeve
regarding rules/issues that aren't written down).
I see some things are documented (grep for security in gdb.texinfo)
and we do have "remote system-call-allowed", but there's not yet any
mention of libthread_db or autoloading of python code (a quick scan of
the bugzilla didn't reveal anything).

If we address these security concerns what is the solution?
One proposal is on the table.
[Maintain a list of trusted paths in gdb and have a flag for
permissive/restrictive mode.
If in restrictive mode libthread_db and autoloaded python/gdbinit code
has to come from a trusted path.
I think one could take this further though.]

Do we need to address this before adding my $pdir patch?

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]