mirror of git://sourceware.org/git/glibc.git
9c96c87d60
The tunable privilege levels were a retrofit to try and keep the malloc tunable environment variables' behavior unchanged across security boundaries. However, CVE-2023-4911 shows how tricky can be tunable parsing in a security-sensitive environment. Not only parsing, but the malloc tunable essentially changes some semantics on setuid/setgid processes. Although it is not a direct security issue, allowing users to change setuid/setgid semantics is not a good security practice, and requires extra code and analysis to check if each tunable is safe to use on all security boundaries. It also means that security opt-in features, like aarch64 MTE, would need to be explicit enabled by an administrator with a wrapper script or with a possible future system-wide tunable setting. Co-authored-by: Siddhesh Poyarekar <siddhesh@sourceware.org> Reviewed-by: DJ Delorie <dj@redhat.com> |
||
|---|---|---|
| .. | ||
| abi-versions.awk | ||
| abilist.awk | ||
| backport-support.sh | ||
| build-many-glibcs.py | ||
| check-c++-types.sh | ||
| check-execstack.awk | ||
| check-initfini.awk | ||
| check-installed-headers.sh | ||
| check-local-headers.sh | ||
| check-localplt.awk | ||
| check-obsolete-constructs.py | ||
| check-textrel.awk | ||
| check-wrapper-headers.py | ||
| check-wx-segment.py | ||
| config-uname.sh | ||
| config.guess | ||
| config.sub | ||
| cpp | ||
| cross-test-ssh.sh | ||
| documented.sh | ||
| dso-ordering-test.py | ||
| evaluate-test.sh | ||
| firstversions.awk | ||
| gen-as-const.py | ||
| gen-libc-abis | ||
| gen-libc-modules.awk | ||
| gen-posix-conf-vars.awk | ||
| gen-rrtypes.py | ||
| gen-sorted.awk | ||
| gen-tunables.awk | ||
| glibc_shared_code.py | ||
| glibcelf.py | ||
| glibcextract.py | ||
| glibcpp.py | ||
| glibcsymbols.py | ||
| haveversions.awk | ||
| install-sh | ||
| lib-names.awk | ||
| lint-makefiles.sh | ||
| list-fixed-bugs.py | ||
| list-sources.sh | ||
| localplt.awk | ||
| merge-test-results.sh | ||
| mkinstalldirs | ||
| move-if-change | ||
| move-symbol-to-libc.py | ||
| pylint | ||
| pylintrc | ||
| rellns-sh | ||
| sort-makefile-lines.py | ||
| soversions.awk | ||
| sysd-rules.awk | ||
| test-installation.pl | ||
| test_printers_common.py | ||
| test_printers_exceptions.py | ||
| tst-elf-edit.py | ||
| tst-ld-trace.py | ||
| update-abilist.sh | ||
| update-copyrights | ||
| vcstocl_quirks.py | ||
| versionlist.awk | ||
| versions.awk | ||