This is the mail archive of the gdb@sources.redhat.com mailing list for the GDB project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

gdb and suid binaries - security?

From: "Kris Warkentin" <kewarken at qnx dot com>
To: <gdb at sources dot redhat dot com>
Date: Wed, 3 Apr 2002 10:26:58 -0500
Subject: gdb and suid binaries - security?

Is it true that if gdb is debugging a suid binary then any calls they make
from the debugger are executed as that user?  Couldn't one then execute
arbitrary instructions as root if you debugged something like su?  Or even
worse, just call setuid(0) and let the program run to completion.

Oddly enough I've noticed that this actually fails on both FreeBSD and Linux
but it almost seems to be some mechanism outside of gdb.  Does anyone know
how this works?

cheers,

Kris

Follow-Ups:
- Re: gdb and suid binaries - security?
  - From: Gianni Mariani

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]