Bug#600667: Fw: re: eglibc: cve-2010-3847 dynamic linker expands $ORIGIN in setuid library search path
On Tue, Feb 01, 2011 at 09:19:53PM -0500, Michael Gilbert wrote:
> reopen 600667
> thanks
>
> Maybe I'm reading things wrong, or maybe Mitre's information is
> actually incorrect, but it looks like the fixes claimed for
> CVE-2010-3847 in 2.11.2-8 actually address CVE-2010-3856 [0] instead.
> It looks like CVE-2010-3847 [1] is still unfixed. The original fix in
> -7 may have been correct to begin with?
>
We have removed the fix in -7 because:
- it has been removed in the new upload to lenny
- it never went upstream.
It has been replaced by this commit instead:
http://sourceware.org/ml/libc-hacker/2010-12/msg00001.html
So I don't think there is any security issue left with the current
patch set.
--
Aurelien Jarno GPG: 1024D/F1BCDB73
aurelien@aurel32.net http://www.aurel32.net
Reply to: