From 6d79500f5342edd505f0139db71527b1a0a72f1f Mon Sep 17 00:00:00 2001
From: "Christopher R. Palmer" <crpalmer@gmail.com>
Date: Sat, 12 Dec 2015 06:10:09 -0500
Subject: bionic: Do not allow LD_SHIM_LIBS for setuid executables

That's really not safe...

Change-Id: If79af951830966fc21812cd0f60a8998a752a941
---
 libc/bionic/libc_init_common.cpp | 1 +
 1 file changed, 1 insertion(+)

(limited to 'libc')

diff --git a/libc/bionic/libc_init_common.cpp b/libc/bionic/libc_init_common.cpp
index bd716286a..ecde8d455 100644
--- a/libc/bionic/libc_init_common.cpp
+++ b/libc/bionic/libc_init_common.cpp
@@ -250,6 +250,7 @@ static bool __is_unsafe_environment_variable(const char* name) {
       "LD_ORIGIN_PATH",
       "LD_PRELOAD",
       "LD_PROFILE",
+      "LD_SHIM_LIBS",
       "LD_SHOW_AUXV",
       "LD_USE_LOAD_BIAS",
       "LOCALDOMAIN",
-- 
cgit v1.2.3