Bug#552518: libc6: ldd arbitrary code execution vulnerability

To: Michael Gilbert <michael.s.gilbert@gmail.com>, 552518@bugs.debian.org
Subject: Bug#552518: libc6: ldd arbitrary code execution vulnerability
From: Aurelien Jarno <aurelien@aurel32.net>
Date: Tue, 27 Oct 2009 07:35:03 +0100
Message-id: <[🔎] 20091027063503.GX26129@hall.aurel32.net>
Reply-to: Aurelien Jarno <aurelien@aurel32.net>, 552518@bugs.debian.org
In-reply-to: <[🔎] 20091026170356.1659235a.michael.s.gilbert@gmail.com>
References: <[🔎] 20091026170356.1659235a.michael.s.gilbert@gmail.com>

On Mon, Oct 26, 2009 at 05:03:56PM -0400, Michael Gilbert wrote:
> package: eglibc
> version: 2.10.1-2
> severity: important
> tags: security
> 
> it has been disclosed that it is possible to execute arbitrary code via
> ldd.  this is a pretty obscure attack vector since it requires the user
> to run ldd on an untrusted executable.  while unlikely (since users
> using ldd should be reasonably intelligent), it is very much possible,
> so a fix should be made.  see [0] for more details.
> 
> i don't think that this is severe enough to warrant a DSA.  if you
> would like to fix the problem in the stable releases, please
> coordinate with the release team.
> 

It is something know for years... Do you actually have a patch to fix
this?

-- 
Aurelien Jarno	                        GPG: 1024D/F1BCDB73
aurelien@aurel32.net                 http://www.aurel32.net

Reply to:

References:
- Bug#552518: libc6: ldd arbitrary code execution vulnerability
  - From: Michael Gilbert <michael.s.gilbert@gmail.com>

Prev by Date: Processing of tzdata_2009p-1_all.changes
Next by Date: Bug#551158: Libc6: exim4 Segfault in libc-2.7.so
Previous by thread: Bug#552518: libc6: ldd arbitrary code execution vulnerability
Next by thread: Processing of tzdata_2009p-1_all.changes
Index(es):
- Date
- Thread