cm0002@europe.pub to Linux@programming.dev · 3 days agoDirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch availablegithub.comexternal-linkmessage-square15linkfedilinkarrow-up151arrow-down10
arrow-up151arrow-down1external-linkDirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch availablegithub.comcm0002@europe.pub to Linux@programming.dev · 3 days agomessage-square15linkfedilink
minus-squareDumhuvud@programming.devlinkfedilinkEnglisharrow-up2·2 days agoIn the Node.js world adding a dependency may lead to arbitrary code being executed. It’s bad enough on its own because a bad actor can steal SSH-keys this way, but combined with this exploit they will be able to install a rootkit and compromise your entire system.
In the Node.js world adding a dependency may lead to arbitrary code being executed.
It’s bad enough on its own because a bad actor can steal SSH-keys this way, but combined with this exploit they will be able to install a rootkit and compromise your entire system.