On Tue, 20 Jun 2017 08:32:23 -0400 Tom Horsley wrote: > That doesn't make any sense. If the exploit happens in ld.so, fixing it > doesn't do anything. All you need to do is point an executable at an > old copy of ld.so and you have access to the same exploit.
OK, I see it now. The exploit only happens in setuid programs, so if they are linked with a repaired ld.so, then I can't change them to use the broken ld.so (unless I have root access, in which case who needs the exploit). _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org
