Date: Fri, 05 Dec 2025 15:09:08 +0000 From: Dag-Erling=?utf-8?Q? Sm=C3=B8rg?=rav <des@FreeBSD.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-branches@FreeBSD.org Subject: git: 74b10f0b5760 - stable/15 - rtld-elf: Mark LD_SHOW_AUXV insecure Message-ID: <6932f594.31ddd.4f9efc0a@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch stable/15 has been updated by des: URL: https://cgit.FreeBSD.org/src/commit/?id=74b10f0b57600dffa4eb81eaa40dbbfb8c5c3a1f commit 74b10f0b57600dffa4eb81eaa40dbbfb8c5c3a1f Author: Dag-Erling Smørgrav <des@FreeBSD.org> AuthorDate: 2025-12-03 10:09:31 +0000 Commit: Dag-Erling Smørgrav <des@FreeBSD.org> CommitDate: 2025-12-05 15:08:55 +0000 rtld-elf: Mark LD_SHOW_AUXV insecure This prevents dumping the memory layout of setugid processes. MFC after: 3 days Reviewed by: kib Differential Revision: https://reviews.freebsd.org/D54033 (cherry picked from commit 5242bcff202fa2a5a39895423c8d8c11c02ad76a) --- libexec/rtld-elf/rtld.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libexec/rtld-elf/rtld.c b/libexec/rtld-elf/rtld.c index bdfff7361e96..8ac897508870 100644 --- a/libexec/rtld-elf/rtld.c +++ b/libexec/rtld-elf/rtld.c @@ -395,7 +395,7 @@ static struct ld_env_var_desc ld_env_vars[] = { LD_ENV_DESC(TRACE_LOADED_OBJECTS_FMT1, false), LD_ENV_DESC(TRACE_LOADED_OBJECTS_FMT2, false), LD_ENV_DESC(TRACE_LOADED_OBJECTS_ALL, false), - LD_ENV_DESC(SHOW_AUXV, false), + LD_ENV_DESC(SHOW_AUXV, true), LD_ENV_DESC(STATIC_TLS_EXTRA, false), LD_ENV_DESC(NO_DL_ITERATE_PHDR_AFTER_FORK, false), };help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6932f594.31ddd.4f9efc0a>