| 1 |
On Sun, 2003-08-17 at 12:03, Alexander Gabert wrote: |
| 2 |
[snip] |
| 3 |
|
| 4 |
So after reading this I thought to myself I don't want to update my |
| 5 |
entire world again so I wrote a little shell script to search everything |
| 6 |
in my path to look for what you said, however interestingly enough I |
| 7 |
could not find a single program which had it's .interp section linked to |
| 8 |
/lib/ld-2.3.2.so as you described. |
| 9 |
I'm currently using hardened-gcc-1.4 and I assume that this bug is only |
| 10 |
present in ~hppa |
| 11 |
|
| 12 |
Attached is a script I used to try and locate broken packages. |
| 13 |
|
| 14 |
> |
| 15 |
> this is the old behaviour which will bring massive problems when glibc |
| 16 |
> is updated: |
| 17 |
> 17:56:24 pappy@crusade pappy $ readelf -a /bin/ping | grep -i interp |
| 18 |
> INTERP 0x00a328 0x0000a328 0x0000a328 0x00011 0x00011 R 0x1 |
| 19 |
> [Requesting program interpreter: /lib/ld-2.3.2.so] |
| 20 |
> |
| 21 |
> the new update-proof behaviour: |
| 22 |
> 17:56:29 pappy@crusade pappy $ readelf -a /usr/bin/ssh | grep -i interp |
| 23 |
> INTERP 0x0000f4 0x000000f4 0x000000f4 0x00026 0x00026 R 0x1 |
| 24 |
> [Requesting program interpreter: /lib/ld-linux.so.2] |
| 25 |
> |
| 26 |
> Remember that on hppa the softlink is not the same but the ebuild will |
| 27 |
> take care once hppa is getting another glibc bug fixed concerning %r19. |
| 28 |
> |
| 29 |
> Every user of hardened-gcc should emerge the new hardened-gcc and then |
| 30 |
> emerge --emptytree --update --verbose world to make sure no single |
| 31 |
> program is using the old interpreter link any more. |
| 32 |
> |
| 33 |
> this is a "forward bug" warning which will have no effect until the |
| 34 |
> glibc and the ld stays the same - but please take care. |
| 35 |
> |
| 36 |
> |
| 37 |
> Alex |
| 38 |
> |
| 39 |
> |
| 40 |
> |
| 41 |
> -- |
| 42 |
> gentoo-hardened@g.o mailing list |
| 43 |
-- |
| 44 |
Ned Ludd <solar@g.o> |
| 45 |
Gentoo Linux Developer (Hardened) |
Archives