| commit | f6110a8fee2ca36f8e2d2abecf3cba9fa7b8ea7d | |
| author | Florian Weimer <fweimer@redhat.com> | |
| Mon, 19 Jun 2017 15:09:55 +0000 (19 17:09 +0200) | ||
| committer | Florian Weimer <fweimer@redhat.com> | |
| Mon, 19 Jun 2017 16:27:30 +0000 (19 18:27 +0200) | ||
| tree | 16ff41bf5ff4ad2e55eb28b4b7058c6a2784e6fb | treesnapshot (tar.gz zip) |
| parent | b08a6a0dea63742313ed3d9577c1e2d83436b196 | commitdiff |
CVE-2017-1000366: Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]
LD_LIBRARY_PATH can only be used to reorder system search paths, which
is not useful functionality.
This makes an exploitable unbounded alloca in _dl_init_paths unreachable
for AT_SECURE=1 programs.
LD_LIBRARY_PATH can only be used to reorder system search paths, which
is not useful functionality.
This makes an exploitable unbounded alloca in _dl_init_paths unreachable
for AT_SECURE=1 programs.
| ChangeLog | diffblobblamehistory | |
| elf/rtld.c | diffblobblamehistory |