Actions
Bug #877
closedUse secure_getenv (or equivalent) when getting env. vars. involving paths
Start date:
01/23/2015
Due date:
% Done:
0%
Estimated time:
Actions
Added by Mathieu Desnoyers over 9 years ago. Updated about 9 years ago.
0%
Fixed in stable-2.5, stable-2.6, master.
Master commit:
commit 13efba44993b2b2679677edb5cf75ef17849d621
Author: Mathieu Desnoyers <mathieu.desnoyers@efficios.com>
Date: Thu Apr 23 18:45:05 2015 -0400
Fix: use lttng_secure_getenv to handle env. vars. involving paths
This is a security fix for applications linked against liblttng-ust
which are exposed as setuid binaries.
A malicious user which can run those applications could target those
environment variable paths to locations that would allow it to create
files in various areas of the filesystem.
Signed-off-by: Mathieu Desnoyers <mathieu.desnoyers@efficios.com>