FreeBSD -- Improper environment sanitization in rtld(1)

2009-12-03T00:00:00
ID AD08D14B-CA3D-11DF-AADE-0050568F000C
Type freebsd
Reporter FreeBSD
Modified 2016-08-09T00:00:00

Description

Problem Description: When running setuid programs rtld will normally remove potentially dangerous environment variables. Due to recent changes in FreeBSD environment variable handling code, a corrupt environment may result in attempts to unset environment variables failing.