Re: kern/42420: $ORIGIN undefined on NetBSD

To: kern-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,austinenglish+netbsd%gmail.com@localhost
Subject: Re: kern/42420: $ORIGIN undefined on NetBSD
From: Matthew Mondor <mm_lists%pulsar-zone.net@localhost>
Date: Wed, 11 Jul 2012 17:10:05 +0000 (UTC)

The following reply was made to PR kern/42420; it has been noted by GNATS.

From: Matthew Mondor <mm_lists%pulsar-zone.net@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: kern/42420: $ORIGIN undefined on NetBSD
Date: Wed, 11 Jul 2012 13:07:34 -0400

 On Tue, 10 Jul 2012 22:40:07 +0000 (UTC)
 christos%zoulas.com@localhost (Christos Zoulas) wrote:
 
 >  Look for #ifdef notyet in kern_exec.c and get rid of them
 
 I didn't yet check the code, but of interest:
 
http://www.h-online.com/open/news/item/Root-privileges-through-vulnerability-in-GNU-C-loader-1110182.html
 
 We must be sure that like for LD_PRELOAD and LD_LIBRARY_PATH, ORIGIN be
 disabled for setuid and setgid binaries.
 -- 
 Matt

Follow-Ups:
- Re: kern/42420: $ORIGIN undefined on NetBSD
  - From: Christos Zoulas

Prev by Date: Re: port-vax/46677 (gcc bug with builtin ffs on vax.)
Next by Date: Re: kern/42420: $ORIGIN undefined on NetBSD
Previous by Thread: Re: kern/42420: $ORIGIN undefined on NetBSD
Next by Thread: Re: kern/42420: $ORIGIN undefined on NetBSD
Indexes:

Home | Main Index | Thread Index | Old Index