oss-sec mailing list archives
Re: Running Java across a privilege boundry
From: Alexander Cherepanov <cherepan () mccme ru>
Date: Thu, 18 Dec 2014 21:43:54 +0300
On 2014-12-18 20:50, Martin Carpenter wrote:
I requested a separate tag for relative RPATH a while ago: https://bugs.debian.org/732682 Now we "only" need someone to write the code. :-)Great! Is that all we need? The tests reference the Debian policy manual (package debian-policy): https://www.debian.org/doc/debian-policy/ch-sharedlibs.html (for completeness: also sections 10.2, 10.3). This references neither RPATH nor RUNPATH. Perhaps we need to fix that first?
https://bugs.debian.org/555982
Suggested addition: 8.7 RUNPATH and RPATH Libraries that define RPATH or RUNPATH should ensure that this does not contain relative paths. This is to prevent an executable from loading a library from an untrusted location. (This should include the corner cases whereby the path starts or ends with a colon, or includes two consecutive colons). Did I miss anything?
Relative paths is not the only problem. /tmp is even worse: https://bugs.debian.org/759868 -- Alexander Cherepanov
Current thread:
- Re: Running Java across a privilege boundry, (continued)
- Re: Running Java across a privilege boundry Russ Allbery (Nov 22)
- Re: Running Java across a privilege boundry Tim Brown (Nov 22)
- Re: Running Java across a privilege boundry Solar Designer (Nov 23)
- Re: Running Java across a privilege boundry Solar Designer (Nov 25)
- Re: Running Java across a privilege boundry Solar Designer (Dec 08)
- Re: Running Java across a privilege boundry Tim Brown (Dec 18)
- Re: Running Java across a privilege boundry Jakub Wilk (Dec 18)
- Re: Running Java across a privilege boundry Martin Carpenter (Dec 18)
- Re: Running Java across a privilege boundry Jakub Wilk (Dec 18)
- Re: Running Java across a privilege boundry Martin Carpenter (Dec 18)
- Re: Running Java across a privilege boundry Alexander Cherepanov (Dec 18)
- Re: Running Java across a privilege boundry Martin Carpenter (Dec 18)
- Re: Running Java across a privilege boundry Alexander Cherepanov (Dec 18)