OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client #586

mx-psi · 2024-06-26T17:09:13Z

macOS has a similar mechanism to LD_PRELOAD in Linux called DYLD_INSERT_LIBRARIES. Our current macOS binaries honor this environment variable, while the Linux ones do not. It is a good security practice to prevent usage of said environment variable to avoid preloading of arbitrary dynamic libraries.

To harden our binaries we can follow this StackOverflow answer advice.

Note

2024 OpenTelemetry security audit finding reference:
OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client

The text was updated successfully, but these errors were encountered:

mx-psi added the os:macos macOS related issues label Jun 26, 2024

codeboten self-assigned this Jul 2, 2024

mx-psi changed the title ~~Prevent DYLB from being loaded in darwin binaries~~ OTE-01-002 WP1: Prevent DYLB from being loaded in darwin binaries Jul 31, 2024

mx-psi changed the title ~~OTE-01-002 WP1: Prevent DYLB from being loaded in darwin binaries~~ OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client Jul 31, 2024

mx-psi added the area:security Security and integrity issues label Oct 30, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client #586

OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client #586

mx-psi commented Jun 26, 2024 •

edited by arminru

Loading

OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client #586

OTE-01-002 WP1: Possible DYLIB Injection on MacOS Client #586

Comments

mx-psi commented Jun 26, 2024 • edited by arminru Loading

mx-psi commented Jun 26, 2024 •

edited by arminru

Loading