[gmx-developers] cmake build of gromacs 4.5.5 problem

Szilárd Páll szilard.pall at cbr.su.se
Thu Jun 2 12:37:42 CEST 2011


> Technically, I think that's a security flaw. It allows the execution of
> arbitrary user code. A few years ago we had a security type ask us to fix
> something in GMXRC along these lines.

Yes, technically it is, I do remember the report as well. However this
seems to happen *only* to binaries in the build tree with hardcoded
build-tree paths in their RPATH such that one can run the binaries
from the build tree. So one would be silly to manually copy out and
use those binaries. Also, if you are already run from your build tree
a binary you just built it's not very diffiucult to execute arbitrary
user code: just modify the source code and recompile! :)

--
Szilárd



More information about the gromacs.org_gmx-developers mailing list