SuSE LD RPATH/RUNPATH本地权限提升漏洞

信息提供：	安全公告（或线索）提供热线：51cto.editor@gmail.com
漏洞类别：	异常条件处理失败错误
攻击类型：	本地攻击
发布日期：	2006-02-10
更新日期：	2006-02-10
受影响系统：	S.u.S.E. Linux 9.3 S.u.S.E. Linux 9.2 S.u.S.E. Linux 9.1 S.u.S.E. Linux 9.0 S.u.S.E. Linux 10.0 Novell Linux Desktop 9
安全系统：	无
漏洞报告人：	Ludwig Nussel
漏洞描述：	SuSE Linux是一款开放源代码Linux系统。 SuSE的GNU连接器在处理链接RPATH/RUNPATH组件时存在问题，本地攻击者可能利用此漏洞提升权限。 在链接到二进制程序时，SuSE的GNU连接器ld的特定补丁会删除多余的RPATH和RUNPATH组件。由于这个例程中的问题，ld有时会留下空的RPATH组件。如果以空的RPATH组件运行二进制程序的话，动态连接器就会试图加载当前目录的共享函数库。 攻击者可以诱骗用户在包含有精心构造的共享库的目录中运行受影响的应用程序，导致以受害用户id的权限执行任意代码。
测试方法：	无
解决方法：	临时解决方法： * 不要在其他用户可写的目录中运行受影响的二进制程序。 厂商补丁： S.u.S.E. -------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： x86 Platform: SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/binutils-2.16.91.0.2-8.4.i586.rpm 5336c44f08baed1eb20e31672e376996 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdegraphics3-3.4.2-12.2.i586.rpm 8fa8cadb9fc305648d809c43d078ee74 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdegraphics3-3D-3.4.2-12.2.i586.rpm b04b5ea686bface4391d91b96a06b4b7 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdegraphics3-imaging-3.4.2-12.2.i586.rpm 4be879313304f774cc0e0721b9a4ca52 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdegraphics3-scan-3.4.2-12.2.i586.rpm f93207a11a661c6beac8620693ceeb26 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdegraphics3-tex-3.4.2-12.2.i586.rpm bdcdbdfb5651faabb99493b861fda9b2 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdelibs3-3.4.2-24.3.i586.rpm 82a02e5e55613d7cd60df86fbbb2b050 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kdelibs3-devel-3.4.2-24.3.i586.rpm 68702ff3f54cca4d3e8c95fd1953b02b SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/binutils-2.15.94.0.2.2-3.3.i586.rpm 4cdc297d2ddc398829356d8032d2c570 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdegraphics3-3.4.0-11.5.i586.rpm f8364afec78108dcb3bb089112c9e486 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdegraphics3-3D-3.4.0-11.5.i586.rpm e8405aca4fb3ddf5a5fe38095891173f ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdegraphics3-imaging-3.4.0-11.5.i586.rpm 1521df464699151917c5edebf7c0e9c8 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdegraphics3-scan-3.4.0-11.5.i586.rpm d5f69e63936e044c7668453643ebdb8d ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdegraphics3-tex-3.4.0-11.5.i586.rpm c6db7f1b79c54fdbfee5306fb06d327c ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdelibs3-3.4.0-20.11.i586.rpm 3986977230c6cf5e375652707599d086 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kdelibs3-devel-3.4.0-20.11.i586.rpm 13e39a04f8dcdb2235a4554a242c01d8 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/binutils-2.15.91.0.2-7.3.i586.rpm 574a32932f442d6ae097c62e67a804bb ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/dia-0.92.2-128.1.i586.rpm d3d6d553b0e3f1a1e44e67a1e79cc336 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdegraphics3-3.3.0-13.7.i586.rpm 0f9f1a102d15103fee1d1e6c29f70148 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdegraphics3-3D-3.3.0-13.7.i586.rpm 1ee1f29003e5333d777699d6b89b80f1 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdegraphics3-imaging-3.3.0-13.7.i586.rpm dcf97cc31d22664de69e730f734479be ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdegraphics3-scan-3.3.0-13.7.i586.rpm 0e79d0489c8fe12b62964f3ab3c653a2 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdegraphics3-tex-3.3.0-13.7.i586.rpm cec40000030a2db31d34bbe048581e9a ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdelibs3-3.3.0-34.12.i586.rpm 27b0c1bfa0b2a683483b7122b34523aa ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kdelibs3-devel-3.3.0-34.12.i586.rpm 0a22a4ff2245610205a2275e41cd154a SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/binutils-2.15.90.0.1.1-32.13.i586.rpm d499c31bbd95986a70673d8cb11b99f4 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kdegraphics3-3.2.1-67.16.i586.rpm ff479907370e9848e78b2762395457e0 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kdegraphics3-3D-3.2.1-67.16.i586.rpm 9cf5e0afd4a5650db22cbf8e4da9ba01 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kdegraphics3-scan-3.2.1-67.16.i586.rpm 5c90bfeca61591ce396066a7bba4acc7 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kdegraphics3-tex-3.2.1-67.16.i586.rpm a1611b75579097aa3d0031818b7b6db6 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kdelibs3-3.2.1-44.66.i586.rpm 26ce2b4076b945a3d9ecf8af0b83e1e6 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kdelibs3-devel-3.2.1-44.66.i586.rpm 8c595a2e37986a22a09848a1a128645a ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/i586/binutils-32bit-9.1-200601211731.i586.rpm c2d8945ce2d0607cf909d29f83262f4f ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/i586/kdelibs3-32bit-9.1-200601261432.i586.rpm b36749d947eb47286f0a21922b491a70 Power PC Platform: SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/binutils-2.16.91.0.2-8.4.ppc.rpm de1e858bf7dac44e8adc2a07a0fcf334 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdegraphics3-3.4.2-12.2.ppc.rpm 7a2769b5e3e7ec4af6350dc1d826e7c3 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdegraphics3-3D-3.4.2-12.2.ppc.rpm ceb289844025be2048fb86a671ef3d48 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdegraphics3-imaging-3.4.2-12.2.ppc.rpm c94eed10ad637634db3b24f08d5c0c81 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdegraphics3-scan-3.4.2-12.2.ppc.rpm 6f9aa4b7433345db9826580872438eb5 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdegraphics3-tex-3.4.2-12.2.ppc.rpm 307bdaead8245a26a7b2b00572d290dc ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdelibs3-3.4.2-24.3.ppc.rpm fb1247f46a4414bda0ac48acb971c126 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kdelibs3-devel-3.4.2-24.3.ppc.rpm 4a4d94290e692bf515690953df895155 x86-64 Platform: SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/binutils-2.16.91.0.2-8.4.x86_64.rpm 07905bd004aff0e7f034fbf1839880e4 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/binutils-32bit-2.16.91.0.2-8.4.x86_64.rpm 2808eb66106aac360659f314ce6b8e8e ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdegraphics3-3.4.2-12.2.x86_64.rpm b72daa5dd362a30acb9c9ee60076a432 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdegraphics3-3D-3.4.2-12.2.x86_64.rpm 90db781dfd39d8c046c42c3117d42d21 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdegraphics3-imaging-3.4.2-12.2.x86_64.rpm 50c7e9bb81a223766f8a1b05e961f586 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdegraphics3-scan-3.4.2-12.2.x86_64.rpm bd603d3147becf226534a12d58de9848 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdegraphics3-tex-3.4.2-12.2.x86_64.rpm 324124fb727c6133de4c63fc0d8b109a ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdelibs3-3.4.2-24.3.x86_64.rpm 04f44a7a9113053c11ea2897fea189d1 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdelibs3-32bit-3.4.2-24.3.x86_64.rpm 1232ac61554a53bb772e4ee03d4e75ef ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kdelibs3-devel-3.4.2-24.3.x86_64.rpm a96fa42b4bc03ff15d951029f7606b7d SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/binutils-2.15.94.0.2.2-3.3.x86_64.rpm 503efba51e385e61053e177cab67e111 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/binutils-32bit-9.3-7.1.x86_64.rpm c4ac261d7021cff6ce157365c75b659f ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdegraphics3-3.4.0-11.5.x86_64.rpm b3d2853ee0f65fdb0f771f597555fde7 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdegraphics3-3D-3.4.0-11.5.x86_64.rpm 92681909dd0d1374386f2a081609cd2f ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdegraphics3-imaging-3.4.0-11.5.x86_64.rpm 5a2494c0e345a35631c22647ff426541 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdegraphics3-scan-3.4.0-11.5.x86_64.rpm 389b8d61c3776006c4f2389f60b3e3c1 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdegraphics3-tex-3.4.0-11.5.x86_64.rpm 11f247f28d1dfd1837b8e2f2774c2446 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdelibs3-3.4.0-20.11.x86_64.rpm bbe654a9c69c7e110e1b7de14b498312 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdelibs3-32bit-9.3-7.5.x86_64.rpm 6d4db92e1305e20aa3337624c845bd30 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kdelibs3-devel-3.4.0-20.11.x86_64.rpm 7da490073d6190af2003687951622405 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/binutils-2.15.91.0.2-7.3.x86_64.rpm a97601f2e0d5dd4768cda24282b2f4d9 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/binutils-32bit-9.2-200601220214.x86_64.rpm 6047b8d9493c221302439e289726fbd2 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/dia-0.92.2-128.1.x86_64.rpm 88b9c13e88b013370ac411f2aaa19c19 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdegraphics3-3.3.0-13.7.x86_64.rpm d2f8eba01914b6dd3d05c27c468dcfb0 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdegraphics3-3D-3.3.0-13.7.x86_64.rpm 7b8f6fbb5a0a311c29e900877aebd9d7 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdegraphics3-imaging-3.3.0-13.7.x86_64.rpm 8540ad7e2a46994313cfd3a2963463b8 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdegraphics3-scan-3.3.0-13.7.x86_64.rpm 2032b30bb43091c625baa1792716ae61 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdegraphics3-tex-3.3.0-13.7.x86_64.rpm 7fbd5512b3598157e80c60f0b2855878 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdelibs3-3.3.0-34.12.x86_64.rpm 7b5077bce547bcdd4576c6a541f90267 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdelibs3-32bit-9.2-200602011857.x86_64.rpm 7c62d3a25c8623f156fb43c36468935e ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kdelibs3-devel-3.3.0-34.12.x86_64.rpm 2dc9fac20d13442b3b5302dc29fe9118 SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/binutils-2.15.90.0.1.1-32.13.x86_64.rpm 354087b9758e50f86497996b19eeec94 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/dia-0.92.2-112.11.x86_64.rpm 03659fbb7563826a87f7f94beb1c75a6 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kdegraphics3-3.2.1-67.16.x86_64.rpm 353ef4a09a8a80e2d64b4d427976ce45 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kdegraphics3-3D-3.2.1-67.16.x86_64.rpm 56d31cb34a3837725df75308e0f88703 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kdegraphics3-scan-3.2.1-67.16.x86_64.rpm d1458dddfcffacdb5ef6f430c31c6119 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kdegraphics3-tex-3.2.1-67.16.x86_64.rpm e525803caa7c3dd617f3c5a9a0683ff0 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kdelibs3-3.2.1-44.66.x86_64.rpm 4d3432e2ffc9765d425e69cdf315ba4f ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kdelibs3-devel-3.2.1-44.66.x86_64.rpm e2abc0442f078a34c1ca8516579e3a50 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/koffice-1.3-67.4.x86_64.rpm 02bd9d62e0d1c38f8f71f0cf2494b41b ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/koffice-illustration-1.3-67.4.x86_64.rpm e002a223ab2e3c024c0df5693fd1a3a8 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/koffice-wordprocessing-1.3-67.4.x86_64.rpm 08b03cb4214d760bf6072cd59aac5003 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/lyx-1.3.4-35.1.x86_64.rpm e4bc1e182a72bb3a9e4a878208f13cfe Sources: SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/binutils-2.16.91.0.2-8.4.src.rpm 2dd1e35033820628da6b80be0dbe4936 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kdegraphics3-3.4.2-12.2.src.rpm 0397a4c448a829ac21c11305212ff22b ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kdelibs3-3.4.2-24.3.src.rpm 7c198fa4ace4919c221939e6eca00734 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/binutils-2.15.94.0.2.2-3.3.src.rpm 98d6ea23959aea2765f9c17702ec62dd ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/kdegraphics3-3.4.0-11.5.src.rpm e15f2a22a803a18be7a1ab145a25007b ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/kdelibs3-3.4.0-20.11.src.rpm aeeb36fc3937dd93d506f526c6c98cc4 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/binutils-2.15.91.0.2-7.3.src.rpm 952e90bdae6b1abeb7ca13b4401b398c ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/dia-0.92.2-128.1.src.rpm 4f1d414bf9fd2a2515aaf4463a441aaa ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/kdegraphics3-3.3.0-13.7.src.rpm 0fae44a5765adc1de2b5462873560bfd ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/kdelibs3-3.3.0-34.12.src.rpm 7debc7aeee1ffca646d5c7216ce683fe SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/binutils-2.15.90.0.1.1-32.13.src.rpm 5c7ab33f6c050ba300aaaba7e2040fb4 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kdegraphics3-3.2.1-67.16.src.rpm 8ae65c3f8ab7d3edf8a4e24209ed9e64 ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kdelibs3-3.2.1-44.66.src.rpm 851de1a4caea121c9ed82d77115928b5 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/binutils-2.15.90.0.1.1-32.13.src.rpm 239ff55c3e755403a97a121a058c2caf ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/dia-0.92.2-112.11.src.rpm 309668f36903aed44e8bfd15435f1908 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kdegraphics3-3.2.1-67.16.src.rpm 51ddd6ca60f542ad852eff7a436a7275 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kdelibs3-3.2.1-44.66.src.rpm c23abf7c55209043d1c546877d2aaef7 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/koffice-1.3-67.4.src.rpm d341d9f1e16966db09bd071aeece3a3b ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/lyx-1.3.4-35.1.src.rpm 029f7638dbcba4c841e3803121fb30c7

（