Reply to Is pfSense vulnerable to GHOST (CVE-2015-0235) on Thu, 29 Jan 2015 02:05:46 GMT

cmb — Thu, 29 Jan 2015 02:05:46 GMT

that's not relevant to FreeBSD. With its Linux emulation, it seems it is (or might be), but that isn't something we use nor include.

Reply to Is pfSense vulnerable to GHOST (CVE-2015-0235) on Wed, 28 Jan 2015 18:46:22 GMT

jc2it — Wed, 28 Jan 2015 18:46:22 GMT

from pfsense shell


#ldd -v /lib/libc.so.7
ldd: /lib/libc.so.7: this is an ELF program; use objdump to examine

Sooo after looking at the freebsd man page for objdump, I think this is what I want…


#objdump -i /lib/libc.so.7
BFD header file version 2.15 [FreeBSD] 2004-05-23
elf32-i386-freebsd
 (header little endian, data little endian)
  i386
elf32-i386
 (header little endian, data little endian)
  i386
efi-app-ia32
 (header little endian, data little endian)
  i386
srec
 (header endianness unknown, data endianness unknown)
  i386
symbolsrec
 (header endianness unknown, data endianness unknown)
  i386
tekhex
 (header endianness unknown, data endianness unknown)
  i386
binary
 (header endianness unknown, data endianness unknown)
  i386
ihex
 (header endianness unknown, data endianness unknown)
  i386

               elf32-i386-freebsd elf32-i386 efi-app-ia32 srec symbolsrec
          i386 elf32-i386-freebsd elf32-i386 efi-app-ia32 srec symbolsrec

               tekhex binary ihex
          i386 tekhex binary ihex

also…


#find / -name libc.so*
/lib/libc.so.7
/var/dhcpd/lib/libc.so.7
#ls -la /var/dhcpd/lib/libc*
-r-xr-xr-x  1 dhcpd  _dhcp  1148004 Feb 22  2012 /var/dhcpd/lib/libc.so.7
#objdump -i /var/dhcpd/lib/libc.so.7
BFD header file version 2.15 [FreeBSD] 2004-05-23
elf32-i386-freebsd
 (header little endian, data little endian)
  i386
elf32-i386
 (header little endian, data little endian)
  i386
efi-app-ia32
 (header little endian, data little endian)
  i386
srec
 (header endianness unknown, data endianness unknown)
  i386
symbolsrec
 (header endianness unknown, data endianness unknown)
  i386
tekhex
 (header endianness unknown, data endianness unknown)
  i386
binary
 (header endianness unknown, data endianness unknown)
  i386
ihex
 (header endianness unknown, data endianness unknown)
  i386

               elf32-i386-freebsd elf32-i386 efi-app-ia32 srec symbolsrec
          i386 elf32-i386-freebsd elf32-i386 efi-app-ia32 srec symbolsrec

               tekhex binary ihex
          i386 tekhex binary ihex

It doesn't look like glibc to me, but this is all new. ;)

Reply to Is pfSense vulnerable to GHOST (CVE-2015-0235) on Wed, 28 Jan 2015 17:52:32 GMT

jc2it — Wed, 28 Jan 2015 17:52:32 GMT

In linux one can run the libc as a command like:

#/lib/libc.so.6

This will report the version information.

pfsense shell doesn't seem to work this way.

BTW in pfsense it seems to be /lib/libc.so.7

Reply to Is pfSense vulnerable to GHOST (CVE-2015-0235) on Wed, 28 Jan 2015 17:24:42 GMT

jc2it — Wed, 28 Jan 2015 17:24:42 GMT

Good question, I think you would need to know if glibc was used to compile anything. If so then you would want to know what and how it was called.

I could probably figure this out in RH, but I don't know BSD enough yet to search the system. But lets see…