Comment 3 for bug 542197

Dan Rosenberg (dan-j-rosenberg) wrote :

I suppose the exploitation scenarios are similar, but this seems to be a case of "feature vs. bug". The ldd bash script has documented behavior that results in the execution of the binary that is passed to it as an argument if it can't be loaded by /lib/ld.so. This bug, on the other hand, is a memory corruption issue in ld.so itself, and can result in arbitrary code execution in situations where no code should be executed at all.