cm0002@europe.pub to Linux@programming.dev · 23 days agoDirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch availablegithub.comexternal-linkmessage-square18linkfedilinkarrow-up158arrow-down11
arrow-up157arrow-down1external-linkDirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch availablegithub.comcm0002@europe.pub to Linux@programming.dev · 23 days agomessage-square18linkfedilink
minus-squareDumhuvud@programming.devlinkfedilinkEnglisharrow-up2·22 days agoIn the Node.js world adding a dependency may lead to arbitrary code being executed. It’s bad enough on its own because a bad actor can steal SSH-keys this way, but combined with this exploit they will be able to install a rootkit and compromise your entire system.
In the Node.js world adding a dependency may lead to arbitrary code being executed.
It’s bad enough on its own because a bad actor can steal SSH-keys this way, but combined with this exploit they will be able to install a rootkit and compromise your entire system.