git: 307a6241d05a - stable/14 - rtld-elf: Mark LD_SHOW_AUXV insecure
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Fri, 05 Dec 2025 18:28:42 UTC
The branch stable/14 has been updated by des:
URL: https://cgit.FreeBSD.org/src/commit/?id=307a6241d05ab8280a821767261b2ff194662b3b
commit 307a6241d05ab8280a821767261b2ff194662b3b
Author: Dag-Erling Smørgrav <des@FreeBSD.org>
AuthorDate: 2025-12-03 10:09:31 +0000
Commit: Dag-Erling Smørgrav <des@FreeBSD.org>
CommitDate: 2025-12-05 10:58:57 +0000
rtld-elf: Mark LD_SHOW_AUXV insecure
This prevents dumping the memory layout of setugid processes.
MFC after: 3 days
Reviewed by: kib
Differential Revision: https://reviews.freebsd.org/D54033
(cherry picked from commit 5242bcff202fa2a5a39895423c8d8c11c02ad76a)
---
libexec/rtld-elf/rtld.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/libexec/rtld-elf/rtld.c b/libexec/rtld-elf/rtld.c
index 7120cc176b04..a49d2a6301d2 100644
--- a/libexec/rtld-elf/rtld.c
+++ b/libexec/rtld-elf/rtld.c
@@ -387,7 +387,7 @@ static struct ld_env_var_desc ld_env_vars[] = {
LD_ENV_DESC(TRACE_LOADED_OBJECTS_FMT1, false),
LD_ENV_DESC(TRACE_LOADED_OBJECTS_FMT2, false),
LD_ENV_DESC(TRACE_LOADED_OBJECTS_ALL, false),
- LD_ENV_DESC(SHOW_AUXV, false),
+ LD_ENV_DESC(SHOW_AUXV, true),
LD_ENV_DESC(STATIC_TLS_EXTRA, false),
LD_ENV_DESC(NO_DL_ITERATE_PHDR_AFTER_FORK, false),
};