https://sourceware.org/git/gitweb.cgi?p=newlib-cygwin.git;h=53a831f063a86139a154461fe878b6e4537f247f
commit 53a831f063a86139a154461fe878b6e4537f247f Author: Jon Turney <jon.tur...@dronecode.org.uk> Date: Sat Jul 2 16:45:02 2016 +0100 Improve description of Cygwin ldd utility Improve the description of Cygwin ldd utility to give a bit more detail about how it does what it does Also add a security warning (modelled after the one in the Linux manpage) that it may end up executing the file it is applied to. Signed-off-by: Jon Turney <jon.tur...@dronecode.org.uk> Diff: --- winsup/doc/utils.xml | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) diff --git a/winsup/doc/utils.xml b/winsup/doc/utils.xml index 12949c5..906c377 100644 --- a/winsup/doc/utils.xml +++ b/winsup/doc/utils.xml @@ -755,10 +755,20 @@ ldd [OPTION]... FILE... <refsect1> <title>Description</title> - <para><command>ldd</command> prints the shared libraries (DLLs) an - executable or DLL is linked against. No modifying option is implemented - yet.</para> + <para><command>ldd</command> prints the shared libraries (DLLs) loaded + when running an executable or DLL.</para> + + <refsect2> + <title>Security</title> + <para> + <command>ldd</command> invokes the Windows loader on the file specified, + then uses the Windows debugging interface to report DLLs loaded, and + (for executables) to attempt to stop execution before the entrypoint. + Thus, you should never use ldd on an untrusted file. + </para> + </refsect2> </refsect1> + </refentry> <refentry id="locale">