Skip to content

syscall, os/exec: unsanitized NUL in environment variables #56284

New issue
New issue
Closed
Closed
syscall, os/exec: unsanitized NUL in environment variables#56284
Assignees
neild
Labels
FrozenDueToAgeSecuritycompiler/runtimeIssues related to the Go compiler and/or runtime.release-blocker
Milestone
 
Go1.20
@neild

Description

@neild
neild
opened on Oct 18, 2022

On Windows, syscall.StartProcess and os/exec.Cmd did not properly check for invalid environment variable values. A malicious environment variable value could exploit this behavior to set a value for a different environment variable. For example, the environment variable string "A=B\x00C=D" set the variables "A=B" and "C=D".

Thanks to RyotaK (https://twitter.com/ryotkak) for reporting this issue.

This is CVE-2022-41716 and Go issue https://go.dev/issue/56284.

Metadata

Metadata

Assignees

Labels

FrozenDueToAgeSecuritycompiler/runtimeIssues related to the Go compiler and/or runtime.release-blocker

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions