This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[Bug dynamic-link/21209] LD_HWCAP_MASK read in setuid binaries


https://sourceware.org/bugzilla/show_bug.cgi?id=21209

--- Comment #2 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".

The branch, master has been updated
       via  1c1243b6fc33c029488add276e56570a07803bfd (commit)
      from  a7055e5935f7ee63d622c66a7dde16ba0de674e0 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=1c1243b6fc33c029488add276e56570a07803bfd

commit 1c1243b6fc33c029488add276e56570a07803bfd
Author: Siddhesh Poyarekar <siddhesh@sourceware.org>
Date:   Tue Mar 7 20:52:04 2017 +0530

    Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (bug #21209)

    The LD_HWCAP_MASK environment variable may alter the selection of
    function variants for some architectures.  For AT_SECURE process it
    means that if an outdated routine has a bug that would otherwise not
    affect newer platforms by default, LD_HWCAP_MASK will allow that bug
    to be exploited.

    To be on the safe side, ignore and disable LD_HWCAP_MASK for setuid
    binaries.

        [BZ #21209]
        * elf/rtld.c (process_envvars): Ignore LD_HWCAP_MASK for
        AT_SECURE processes.
        * sysdeps/generic/unsecvars.h: Add LD_HWCAP_MASK.
        * elf/tst-env-setuid.c (test_parent): Test LD_HWCAP_MASK.
        (test_child): Likewise.
        * elf/Makefile (tst-env-setuid-ENV): Add LD_HWCAP_MASK.

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog                   |   10 ++++++++++
 elf/Makefile                |    3 ++-
 elf/rtld.c                  |    3 ++-
 elf/tst-env-setuid.c        |   12 ++++++++++++
 sysdeps/generic/unsecvars.h |    1 +
 5 files changed, 27 insertions(+), 2 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]