From owner-freebsd-bugs@FreeBSD.ORG Tue Jul 2 11:40:02 2013 Return-Path: Delivered-To: freebsd-bugs@smarthost.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 69C25FAA for ; Tue, 2 Jul 2013 11:40:02 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) by mx1.freebsd.org (Postfix) with ESMTP id 4206917A7 for ; Tue, 2 Jul 2013 11:40:02 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.7/8.14.7) with ESMTP id r62Be1X9002199 for ; Tue, 2 Jul 2013 11:40:01 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.7/8.14.7/Submit) id r62Be1fZ002198; Tue, 2 Jul 2013 11:40:01 GMT (envelope-from gnats) Date: Tue, 2 Jul 2013 11:40:01 GMT Message-Id: <201307021140.r62Be1fZ002198@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= Subject: Re: kern/180077: [rtld] [security] Potential DoS in RTLD X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Jul 2013 11:40:02 -0000 The following reply was made to PR kern/180077; it has been noted by GNATS. From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: freebsd-gnats-submit@freebsd.org Cc: Subject: Re: kern/180077: [rtld] [security] Potential DoS in RTLD Date: Tue, 02 Jul 2013 13:35:25 +0200 That value is only "user-controlled" to the extent that it is read from the binary being loaded, which is (assumed to be) under the control of the user. There is no bug here, much less a security issue. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no