2229147 – sudo: error while loading shared libraries: libsudo_util.so.0: cannot open shared object file: No such file or directory

This bug has been migrated to another issue tracking site. It has been closed here and may no longer be being monitored.

If you would like to get updates for this issue, or to participate in it, you may do so at Red Hat Issue Tracker .

Bug 2229147 - sudo: error while loading shared libraries: libsudo_util.so.0: cannot open shared object file: No such file or directory

Summary: sudo: error while loading shared libraries: libsudo_util.so.0: cannot open sh...

Keywords:
Status:	CLOSED MIGRATED
Alias:	None
Product:	Red Hat Enterprise Linux 9
Classification:	Red Hat
Component:	fapolicyd
Sub Component:
Version:	9.2
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Radovan Sroka
QA Contact:	BaseOS QE Security Team
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2023-08-04 12:36 UTC by Paulo Andrade
Modified:	2023-08-16 14:27 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2023-08-16 14:27:24 UTC
Type:	Bug
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHEL-1357	None	None	None	2023-08-16 14:27:24 UTC
Red Hat Issue Tracker	RHELPLAN-164557	None	None	None	2023-08-04 12:38:26 UTC
Red Hat Issue Tracker	SECENGSP-5342	None	None	None	2023-08-04 12:38:34 UTC

Description Paulo Andrade 2023-08-04 12:36:04 UTC

There is not a specific reproducer, but what we could understand is that
apparently the issue started happening after installing the packages

glibc-2.34-60.el9.i686
glibc-gconv-extra-2.34-60.el9.i686
libgcc-11.3.1-4.3.el9.i686

Inspecting source code and doing experiments did not find any possible
issue, other than incorrect type in

https://github.com/linux-application-whitelisting/fapolicyd/blob/main/src/library/file.c#L680

where it should use ELf32_Dyn and not Elf64_Dyn. The types are different,
(Elf32_Dun is 8 bytes while Elf64_Dyn is 16 bytes) but further checking the
code it should only have issues on very special 32 bit libraries, possibly
ending in a segfault.

What really should have triggered the issue was that both, fapolicyd and
sudo were updated in the same transaction.

When attempting to debug the problem, the problem just gone away with a
restart of fapolicyd.

This bug report is now as just a heads up of possible issues, probably with
rpm-plugin-fapolicyd, the condition of updating fapolicyd and sudo in the
same transaction, and probably running the update from sudo or after sudo.

Comment 1 Radovan Sroka 2023-08-16 14:27:24 UTC

This bug is going to be migrated.

Contact point for migration questions or issues: rsroka
Guidance for Bugzilla users to test their Jira account or create one if needed:

https://redhat.service-now.com/help?id=kb_article_view&sysparm_article=KB0016394
https://redhat.service-now.com/help?id=kb_article_view&sysparm_article=KB0016694
https://redhat.service-now.com/help?id=kb_article_view&sysparm_article=KB0016774

Note You need to log in before you can comment on or make changes to this bug.