From owner-freebsd-security@FreeBSD.ORG Fri Dec 4 22:30:51 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 02CF1106566B for ; Fri, 4 Dec 2009 22:30:51 +0000 (UTC) (envelope-from lynx.ripe@gmail.com) Received: from mail-bw0-f213.google.com (mail-bw0-f213.google.com [209.85.218.213]) by mx1.freebsd.org (Postfix) with ESMTP id 82FF08FC08 for ; Fri, 4 Dec 2009 22:30:50 +0000 (UTC) Received: by bwz5 with SMTP id 5so2282903bwz.3 for ; Fri, 04 Dec 2009 14:30:49 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:content-type :content-transfer-encoding; bh=65kcJZWgo6ZohobDOWIMq2EIPaHUj7S4SoJn84QC0/U=; b=hmtaVm+xeRAT4QBhjGO1c9Bk9GKfLrO7ekKSQqG67DrL+xxX3FAqmzxQi/Dd7Pg98N BeyoZ4iEC9i4ogkZXDd2yPpdKhd5vW1ZS5P+dEBYify0IE8M2aQC+JxLHzNGJXdfxNxz f7i5cboh4FBKkbGNOpXfsyzba/c5kFrqmf2p8= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :content-type:content-transfer-encoding; b=YWZpstxgxQDDeqVjNBA53ETzWzUUL3jOSELznuwItCMlogXxcYki2Fgqm/nghBfYov SQ4cgufcimDYrbTqp7oXb6C4+FaqB/FpLmRoQvITyjtL+GTI9wAz4MF99tdacPxESSIf mY8Qz2IkW7nD1OpgO3EJ1sNYV+lGp9+cDL5FY= Received: by 10.204.11.3 with SMTP id r3mr3838570bkr.107.1259965849378; Fri, 04 Dec 2009 14:30:49 -0800 (PST) Received: from lynx.homenet (56-231-132-95.pool.ukrtel.net [95.132.231.56]) by mx.google.com with ESMTPS id g28sm4027111fkg.38.2009.12.04.14.30.46 (version=TLSv1/SSLv3 cipher=RC4-MD5); Fri, 04 Dec 2009 14:30:47 -0800 (PST) Message-ID: <4B198D8F.9000400@gmail.com> Date: Sat, 05 Dec 2009 00:30:39 +0200 From: Dmitry Pryanishnikov User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.8.1.23) Gecko/20090906 SeaMonkey/1.1.18 MIME-Version: 1.0 To: Nikolaos Rangos Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-09:16.rtld X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Dec 2009 22:30:51 -0000 Hello! > So it would be possible to set an > environment > variable which in this case is not UNSETABLE or SETABLE (unsetenv and > putenv/setenv > respectively), in my eyes this is a bad behaviour of the enviroment handling > routines > introduced recently in FreeBSD. Yes, this is a very dangerous situation when environmental variable can't be unset yet can be read. I would only understand that if we supported readonly variables. But officially we haven't them, yet virtually they can exist due to the corrupted environment ;( Generally speaking, IMHO, having destroying function that can fail is the thing which should be avoided if possible. Imagine free() which could fail... Sounds really weird, but current unsetenv() behaviour resembles that. Sincerely, Dmitry -- nic-hdl: LYNX-RIPE