noexec on /dev/shm
Garrett Holmstrom
gholms at fedoraproject.org
Wed Jan 5 01:42:12 UTC 2011
On Tue, Jan 4, 2011 at 4:31 PM, Bernie Innocenti <bernie at codewiz.org> wrote:
> What sort of attack would this enable?
>
> Wait... any unprivileged process can create sockets in the abstract
> namespace? Uh-oh.
Any unprivileged process can prevent you from running X on a given
display by using up the socket name that X wants to use. This is a
textbook DOS scenario.
More information about the devel
mailing list