[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.58.0310080154320.32200@twin.jikos.cz>
From: jikos at jikos.cz (Jirka Kosina)
Subject: ltrace bug
On Wed, 8 Oct 2003, Abhisek Datta wrote:
> A heap based buffer overrun bug is identified in ltrace 'Library Call
> Tracer' utility version 0.3.10-12 which allows execution of arbitrarty
> code with root privilage by corrupting the heap.
I don't see any way how this bug could allow execution of code with root
privileges, as far as ltrace is not suid root.
--
JiKos.
Powered by blists - more mailing lists