From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from simark.ca by simark.ca with LMTP id 8mJpLFR8N2S3TyoAWB0awg (envelope-from ) for ; Wed, 12 Apr 2023 23:51:48 -0400 Received: by simark.ca (Postfix, from userid 112) id A24D31E221; Wed, 12 Apr 2023 23:51:48 -0400 (EDT) Authentication-Results: simark.ca; dkim=pass (1024-bit key; secure) header.d=sourceware.org header.i=@sourceware.org header.a=rsa-sha256 header.s=default header.b=rlWjUF9x; dkim-atps=neutral X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on simark.ca X-Spam-Level: X-Spam-Status: No, score=-7.0 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,MAILING_LIST_MULTI,RCVD_IN_DNSWL_HI, RDNS_DYNAMIC,URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.6 Received: from sourceware.org (ip-8-43-85-97.sourceware.org [8.43.85.97]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by simark.ca (Postfix) with ESMTPS id 197B81E0D3 for ; Wed, 12 Apr 2023 23:51:48 -0400 (EDT) Received: from server2.sourceware.org (localhost [IPv6:::1]) by sourceware.org (Postfix) with ESMTP id 6D8B03857029 for ; Thu, 13 Apr 2023 03:51:46 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 6D8B03857029 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org; s=default; t=1681357906; bh=R3OTSVkd5BesVgEkM55N66j5VntvVxBYn2LmJgVz2z0=; h=Date:To:Cc:Subject:References:In-Reply-To:List-Id: List-Unsubscribe:List-Archive:List-Post:List-Help:List-Subscribe: From:Reply-To:From; b=rlWjUF9xUW78z3EY3nVJmH+KZ4uKAtFjckFe2r/gkYpHVQIPjPgdBaHe4xWBkO15P Dk8Y2QrsTvwrOatqATjFVfQHTDqCsTNGpB93iahq8XPLHjPxtMqkhL1ZOXNSGumEpw HSDG5JQNlZSbNE4ry2XXrc8gBdB/aUIkYR3+bFQw= Received: from mail-pf1-x430.google.com (mail-pf1-x430.google.com [IPv6:2607:f8b0:4864:20::430]) by sourceware.org (Postfix) with ESMTPS id 2B66D3858C66; Thu, 13 Apr 2023 03:51:19 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 2B66D3858C66 Received: by mail-pf1-x430.google.com with SMTP id d2e1a72fcca58-6323e359826so1549989b3a.1; Wed, 12 Apr 2023 20:51:19 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1681357878; x=1683949878; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=R3OTSVkd5BesVgEkM55N66j5VntvVxBYn2LmJgVz2z0=; b=Ly0yodsh3H7yXAD816LgGh6F1tPxENEz0kPyEnmRP8TOj9fwplMw1szmJJHQ1P4eI5 kRZNH2AI71BzSg8JZcHhf4u2Sr27SsyP06hQGNMwGlnPizjh6frvV8y/xgSI2L6KCp+o VrrXBA+H0iekvzOWrHSQxKi5cckWabSHBW2LWXeDSQ5GEJNK/vKNfphQZEiKfbqeDJ6g 1XPElM50jqgUkJ0I9Zz0IvC4Aqrt+RXfaJjbRwPD9U4yF2tHY+FMf6YpCxsC9K+kciwa GiL39mkNqK4dsB57/sn7518horz/fSe97iErLM/RPFr+v2wDELdWAg/Jk2EwMqNHkkqH vuvQ== X-Gm-Message-State: AAQBX9fuX03PRAQxr7n79fqXSxojqBzPIg9l/xujjVAP0qeNfRQpDhXo ogdPD7+Cyn9wLYxycCrG/MU5lbiIcFw= X-Google-Smtp-Source: AKy350Z9sQke/G+isSHnqflm1ggNskQAgio6u+z6J9nTnhwczlxn1abiaynycgjzTmp8SeeoRcst4A== X-Received: by 2002:a05:6a00:2441:b0:63a:ea82:b7b7 with SMTP id d1-20020a056a00244100b0063aea82b7b7mr1394494pfj.28.1681357877881; Wed, 12 Apr 2023 20:51:17 -0700 (PDT) Received: from squeak.grove.modra.org ([2406:3400:51d:8cc0:4d08:cebd:d73f:b794]) by smtp.gmail.com with ESMTPSA id w2-20020a63c102000000b0051806da5cd6sm347104pgf.60.2023.04.12.20.51.16 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 12 Apr 2023 20:51:17 -0700 (PDT) Received: by squeak.grove.modra.org (Postfix, from userid 1000) id 6ADB51142D9A; Thu, 13 Apr 2023 13:21:14 +0930 (ACST) Date: Thu, 13 Apr 2023 13:21:14 +0930 To: Siddhesh Poyarekar Cc: Richard Earnshaw , Nick Clifton , Binutils , "gdb@sourceware.org" Subject: Re: RFC: Adding a SECURITY.md document to the Binutils Message-ID: References: <1c38b926-e003-0e21-e7f1-3d5dbec2aabf@redhat.com> <5b147005-bd28-4cf9-b9e7-479ef02cb1ad@foss.arm.com> <5d044987-39eb-a060-1b2b-9d07b1515e7d@gotplt.org> <73bc480a-a927-2773-8756-50350f76dfbf@gotplt.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <73bc480a-a927-2773-8756-50350f76dfbf@gotplt.org> X-BeenThere: gdb@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Gdb mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , From: Alan Modra via Gdb Reply-To: Alan Modra Errors-To: gdb-bounces+public-inbox=simark.ca@sourceware.org Sender: "Gdb" On Wed, Apr 12, 2023 at 01:10:01PM -0400, Siddhesh Poyarekar wrote: > OK, then how about this for the first paragraph: > > ~~~ > A security bug is one that threatens the security of a system or network. > In the context of GNU Binutils, there are two ways in which a bug could have > security consequences. The primary method is when the tools introduce a > vulnerability in the output file that was not present in the input files > being processed. The other, albeit unlikely way is when a bug in the tools > results in a privilege boundary is crossed in either the tools themselves or > in the code they generate. > ~~~ I don't see that talking about privilege boundaries is particularly relevant. Consider this: It is trivially easy to craft an object file that when examined with objdump will read your ssh private keys. That's not a bug, it's a feature of thin archives. Now all you need is some means of delivering those private keys, and I'm sure there are plenty of buffer overflows in libbfd waiting to be exploited, especially with --enable-targets=all. -- Alan Modra Australia Development Lab, IBM