#3910: +RTS options introduce a security problem for, e.g., setuid binaries
---------------------------------+------------------------------------------
Reporter: andersk | Owner:
Type: bug | Status: new
Priority: normal | Component: Runtime System
Version: 6.12.1 | Keywords:
Os: Unknown/Multiple | Testcase:
Architecture: Unknown/Multiple | Failure: Incorrect result at runtime
---------------------------------+------------------------------------------
The fact that every ghc-compiled program accepts +RTS options could be a
security problem in several contexts. For example, if you compile a
“Hello, world!” program and make it setuid root, any user can now
overwrite any file on the system using root privileges: `hello +RTS
-t/etc/passwd`.
The GHCRTS environment variable has the same problem.
One should not need to have to know about these obscure features to write
a secure program that accepts untrusted arguments.
--
Ticket URL: <http://hackage.haskell.org/trac/ghc/ticket/3910>
GHC <http://www.haskell.org/ghc/>
The Glasgow Haskell Compiler
_______________________________________________
Glasgow-haskell-bugs mailing list
Glasgow-haskell-bugs@haskell.org
http://www.haskell.org/mailman/listinfo/glasgow-haskell-bugs
