logoalt Hacker News

anonym29today at 3:03 PM1 replyview on HN

LPE (to root) is serious, but it's not a remote hole.


Replies

ptxtoday at 5:31 PM

Is this functionality accessible from sandboxed processes? That would make a remote hole much more dangerous when one is found, anyway. The CVE seems to concern SysV semaphores and the pledge(2) man page doesn't seem to mention those.

show 1 reply