Bug#552518: libc6: ldd arbitrary code execution vulnerability

To: submit@bugs.debian.org
Subject: Bug#552518: libc6: ldd arbitrary code execution vulnerability
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Mon, 26 Oct 2009 17:03:56 -0400
Message-id: <[🔎] 20091026170356.1659235a.michael.s.gilbert@gmail.com>
Reply-to: Michael Gilbert <michael.s.gilbert@gmail.com>, 552518@bugs.debian.org

package: eglibc
version: 2.10.1-2
severity: important
tags: security

it has been disclosed that it is possible to execute arbitrary code via
ldd.  this is a pretty obscure attack vector since it requires the user
to run ldd on an untrusted executable.  while unlikely (since users
using ldd should be reasonably intelligent), it is very much possible,
so a fix should be made.  see [0] for more details.

i don't think that this is severe enough to warrant a DSA.  if you
would like to fix the problem in the stable releases, please
coordinate with the release team.

mike

[0] http://www.catonmat.net/blog/ldd-arbitrary-code-execution

Reply to:

Follow-Ups:
- Bug#552518: libc6: ldd arbitrary code execution vulnerability
  - From: Aurelien Jarno <aurelien@aurel32.net>

Prev by Date: Processed: Bug#552010: Reopen
Next by Date: Processing of tzdata_2009p-1_all.changes
Previous by thread: Processed: Bug#552010: Reopen
Next by thread: Bug#552518: libc6: ldd arbitrary code execution vulnerability
Index(es):
- Date
- Thread