Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-54450

RTLD_DI_ORIGIN subjected to buffer overflow due to inability to specify size

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • rhel-9.4
    • glibc
    • No
    • Moderate
    • rhel-sst-pt-libraries
    • ssg_platform_tools
    • 2
    • False
    • Hide

      None

      Show
      None
    • None
    • Red Hat Enterprise Linux
    • None
    • None
    • None
    • None

      What were you trying to do that didn't work?

      Due to the inability to specify the size of a buffer when passing to it, the RTLD_DI_ORIGIN request of dlinfo can experience a buffer overflow.

      Please provide the package NVR for which bug is seen:

      glibc-2.34-100.el9_4.2.x86_64

      How reproducible:

      Behavior is consistently reproducible.

      Steps to reproduce

      N/A (See upstream bug listing linked below)

      Expected results

      Buffer Overflow does not occur as size can be specified.

      Actual results

      Buffer Overflow occurs due to not being able to specify a size.

      Additional

      An upstream glibc bug has already been filed for this behavior.

      https://sourceware.org/bugzilla/show_bug.cgi?id=24298

      Discussion in the upstream glibc mailing list can be found below:

      https://sourceware.org/pipermail/libc-alpha/2024-August/159072.html

              Unassigned Unassigned
              brclark@redhat.com Brandon Clark
              Platform Tools - Libraries Bot Platform Tools - Libraries Bot
              qe-baseos-tools-bugs@redhat.com qe-baseos-tools-bugs@redhat.com qe-baseos-tools-bugs@redhat.com qe-baseos-tools-bugs@redhat.com
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated: