Language Selection

English French German Italian Portuguese Spanish

New tiny project: lddsafe

Filed under
Software

Some days ago we could all read that “ldd”, a tool which prints shared library dependencies, should not be run on untrusted binaries. I read it first on Hacker News and later it hit Slashdot’s frontpage. In some operating systems, this is stated clearly in the man page for the program, while in others it’s not mentioned at all. I belonged to the camp that didn’t know about it and I was a bit surprised. I supposed ldd was doing its job by examining the binary file and not by running it setting some special environment variables.

A Hacker News user, anyway, pointed out something interesting. You can easily get information about the needed shared library dependencies for a program or library using “objdump”, so I spent a few hours writing and tweaking a small script called lddsafe that prints almost the same information as “ldd” using “objdump” and avoiding the security problems, as it doesn’t have to run the program.

Rest Here




More in Tux Machines

Canonical Closes SQLite Vulnerabilities in All Supported Ubuntu OSes

Canonical has published details in a security notice about a number of SQLite vulnerabilities that have been found and fixed in Ubuntu 15.04, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS OSes. Read more

Fotoxx 15.08 Is a Free and Powerful Image Editor for Linux

Fotoxx, a free, open source Linux photo editing application that is useful both beginner and experts alike, has been upgraded to version 15.08 and is now available for download. Read more

Ubuntu MATE Projects Donates Money to Debian, MATE, and Syncthing Developers

The Ubuntu MATE project does something very admirable each month. Its makers contribute financially to other open source projects that are being used in the operating system, and that is something that doesn't happen all the often in the FOSS universe. Read more

Wine 1.7 Series Turn Two Years Old, No Sign Of Wine 1.8

Today marks two years since the start of the Wine 1.7 development series. While it's been two years of doing bi-weekly development releases, there's no sign of Wine 1.8.0 being ready for release in the near future. Read more