#capsudo — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #capsudo, aggregated by home.social.
-
the #dirtyfrag exploit does not run successfully on alpine because the path to the donor SUID binary is hardcoded as /usr/bin/su.
changing that to /bin/bbsuid allows the exploit to run, but it hangs for me on linux-lts 6.18.27.
interestingly, openpax kernels kill the exploit early in the exploit chain.
either way, 6.18.28 fixes it for everyone.
but it goes to show the danger of #SUID binaries and why SUID-less solutions like #capsudo are important.