Date: Fri, 05 Dec 2025 18:28:49 +0000 From: Dag-Erling=?utf-8?Q? Sm=C3=B8rg?=rav <des@FreeBSD.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-branches@FreeBSD.org Subject: git: ef8a5af2a3ec - stable/13 - rtld-elf: Mark LD_SHOW_AUXV insecure Message-ID: <69332461.dcc1.6b04a35f@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch stable/13 has been updated by des: URL: https://cgit.FreeBSD.org/src/commit/?id=ef8a5af2a3ec6ae1ade610ce0c33298eb6cd3bae commit ef8a5af2a3ec6ae1ade610ce0c33298eb6cd3bae Author: Dag-Erling Smørgrav <des@FreeBSD.org> AuthorDate: 2025-12-03 10:09:31 +0000 Commit: Dag-Erling Smørgrav <des@FreeBSD.org> CommitDate: 2025-12-05 18:28:45 +0000 rtld-elf: Mark LD_SHOW_AUXV insecure This prevents dumping the memory layout of setugid processes. MFC after: 3 days Reviewed by: kib Differential Revision: https://reviews.freebsd.org/D54033 (cherry picked from commit 5242bcff202fa2a5a39895423c8d8c11c02ad76a) --- libexec/rtld-elf/rtld.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libexec/rtld-elf/rtld.c b/libexec/rtld-elf/rtld.c index 7110ba6c4c1a..cbf4baa1aee9 100644 --- a/libexec/rtld-elf/rtld.c +++ b/libexec/rtld-elf/rtld.c @@ -400,7 +400,7 @@ static struct ld_env_var_desc ld_env_vars[] = { LD_ENV_DESC(TRACE_LOADED_OBJECTS_FMT1, false), LD_ENV_DESC(TRACE_LOADED_OBJECTS_FMT2, false), LD_ENV_DESC(TRACE_LOADED_OBJECTS_ALL, false), - LD_ENV_DESC(SHOW_AUXV, false), + LD_ENV_DESC(SHOW_AUXV, true), LD_ENV_DESC(STATIC_TLS_EXTRA, false), };help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?69332461.dcc1.6b04a35f>