glibc 的LD_PRELOAD变量可以使文件可覆盖发布时间:2001-01-19 更新时间:2001-01-19 严重程度:高 威胁程度:本地管理员权限 错误类型:配置错误 利用方式:服务器模式 受影响系统 RedHat Linux 6.2 sparc详细描述 GLIBC库中存在一个问题可以允许在SUID或者SGID属性并使用这个库的应用程序覆盖或者写受限制的文件,库允许用户在提供变量不包含"/"的环境变量LD_PRELOAD来预装载库,这个限制是一个保证库正确预装载的方法,但是,如果库在/etc/ld.so.cache文件中发现,这个检查将不被执行,因此就存在可在执行SUID或者SGID程序之前从/lib或者/usr/lib中装载一个库,这样就导致其他文件被破坏. 测试代码 尚无 解决方案 升级程序: RedHat Linux 6.2 sparc: Red Hat Inc. RPM 6.2 sparc glibc-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.2/sparc/glibc-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.2 sparc glibc-devel-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.2/sparc/glibc-devel-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.2 sparc glibc-profile-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.2/sparc/glibc-profile-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.2 sparc nscd-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.2/sparc/nscd-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.2 sparcv9 glibc-2.1.3-22.sparcv9.rpm ftp://updates.redhat.com/6.2/sparcv9/glibc-2.1.3-22.sparcv9.rpm RedHat Linux 6.2 i386: Red Hat Inc. RPM 6.2 i386 glibc-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.2/i386/glibc-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.2 i386 glibc-devel-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.2/i386/glibc-devel-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.2 i386 glibc-profile-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.2/i386/glibc-profile-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.2 i386 nscd-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.2/i386/nscd-2.1.3-22.i386.rpm RedHat Linux 6.2 alpha: Red Hat Inc. RPM 6.2 alpha glibc-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.2/alpha/glibc-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.2 alpha glibc-devel-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.2/alpha/glibc-devel-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.2 alpha glibc-profile-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.2/alpha/glibc-profile-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.2 alpha nscd-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.2/alpha/nscd-2.1.3-22.alpha.rpm RedHat Linux 6.1 sparc: Red Hat Inc. RPM 6.1 sparc glibc-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.1/sparc/glibc-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.1 sparc glibc-devel-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.1/sparc/glibc-devel-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.1 sparc glibc-profile-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.1/sparc/glibc-profile-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.1 sparc nscd-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.1/sparc/nscd-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.1 sparcv9 glibc-2.1.3-22.sparcv9.rpm ftp://updates.redhat.com/6.1/sparcv9/glibc-2.1.3-22.sparcv9.rpm RedHat Linux 6.1 i386: Red Hat Inc. RPM 6.1 i386 glibc-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.1/i386/glibc-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.1 i386 glibc-devel-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.1/i386/glibc-devel-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.1 i386 glibc-profile-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.1/i386/glibc-profile-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.1 i386 nscd-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.1/i386/nscd-2.1.3-22.i386.rpm RedHat Linux 6.1 alpha: Red Hat Inc. RPM 6.1 alpha glibc-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.1/alpha/glibc-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.1 alpha glibc-devel-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.1/alpha/glibc-devel-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.1 alpha glibc-profile-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.1/alpha/glibc-profile-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.1 alpha nscd-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.1/alpha/nscd-2.1.3-22.alpha.rpm RedHat Linux 6.0 sparc: Red Hat Inc. RPM 6.0 sparc glibc-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.0/sparc/glibc-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.0 sparc glibc-devel-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.0/sparc/glibc-devel-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.0 sparc glibc-profile-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.0/sparc/glibc-profile-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.0 sparc nscd-2.1.3-22.sparc.rpm ftp://updates.redhat.com/6.0/sparc/nscd-2.1.3-22.sparc.rpm Red Hat Inc. RPM 6.0 sparcv9 glibc-2.1.3-22.sparcv9.rpm ftp://updates.redhat.com/6.0/sparcv9/glibc-2.1.3-22.sparcv9.rpm RedHat Linux 6.0 i386: Red Hat Inc. RPM 6.0 i386 glibc-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.0/i386/glibc-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.0 i386 glibc-devel-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.0/i386/glibc-devel-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.0 i386 glibc-profile-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.0/i386/glibc-profile-2.1.3-22.i386.rpm Red Hat Inc. RPM 6.0 i386 nscd-2.1.3-22.i386.rpm ftp://updates.redhat.com/6.0/i386/nscd-2.1.3-22.i386.rpm RedHat Linux 6.0 alpha: Red Hat Inc. RPM 6.0 alpha glibc-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.0/alpha/glibc-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.0 alpha glibc-devel-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.0/alpha/glibc-devel-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.0 alpha glibc-profile-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.0/alpha/glibc-profile-2.1.3-22.alpha.rpm Red Hat Inc. RPM 6.0 alpha nscd-2.1.3-22.alpha.rpm ftp://updates.redhat.com/6.0/alpha/nscd-2.1.3-22.alpha.rpm 相关信息 |
