Upcoming FreeBSD Security Advisory
pluknet
pluknet at gmail.com
Tue Dec 1 21:37:40 UTC 2009
2009/12/1 Roberto Nunnari <roberto.nunnari at supsi.ch>:
> Julian H. Stacey ha scritto:
>>
>> Reference:
>>>
>>> From: Jan Muenther <jan.muenther at nruns.com>
>>
>>> I'd be greatly surprised if the affected code looked different in 6.x.
>>
>> There is No unsetenv in 6.2-RELEASE/src/libexec/rtld-elf/rtld.
>> There Is unsetenv in 6.[34]-RELEASE/src/libexec/rtld-elf/rtld.
>>
>> Cheers,
>> Julian
>
> I just checked it out, and on 6.4 the script doesn't work.
> $ uname -rms
> FreeBSD 6.4-RELEASE-p7 i386
Because in 6.x *env() uses legacy Berkeley implementation, while 7+
uses its own one.
--
wbr,
pluknet
More information about the freebsd-security
mailing list