[sudo-users] pam_ssh_agent_auth segfault

Todd C. Miller Todd.Miller at courtesan.com
Wed Sep 21 10:12:15 EDT 2011

Well, that's both good and bad news.  The change from RTLD_LOCAL
to RTLD_GLOBAL was needed for pam modules that require symbols from

In this case it looks like there is a namespace clash with the
"verbose" symbol in the sudoers parser and a function called verbose
in pam_ssh_agent_auth.so and ld.so chooses the wrong one.  I had
hoped that libtool's export file would prevent this kind of problem
but apparently it doesn't (at least on FreeBSD).  There will be a
workaround in the next release candidate of sudo 1.8.3.

 - todd

More information about the sudo-users mailing list