Everyone always thinks it's a kernel bug, it's a gcc/clang bug, etc. so it's fun to hear about when it actually was.
This is the story of CVE-2022-0847, a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes.
Everyone always thinks it's a kernel bug, it's a gcc/clang bug, etc. so it's fun to hear about when it actually was.
Everyone always thinks it's a kernel bug, it's a gcc/clang bug, etc. so it's fun to hear about when it actually was.