Places to block filesystem traversal
Places to block filesystem traversal
Posted Oct 5, 2018 14:24 UTC (Fri) by smurf (subscriber, #17840)In reply to: Places to block filesystem traversal by epa
Parent article: New AT_ flags for restricting pathname lookup
Also, userspace sanitation depends on the fact that no second thread exists that modifies the sanitized path before it's passed to the kernel. In-kernel defenses against that sort of thing at least work.