On Tue, 2017-06-20 at 08:56 -0400, Tom Horsley wrote: > On Tue, 20 Jun 2017 08:32:23 -0400 > Tom Horsley wrote: > > > That doesn't make any sense. If the exploit happens in ld.so, fixing it > > doesn't do anything. All you need to do is point an executable at an > > old copy of ld.so and you have access to the same exploit. > > OK, I see it now. The exploit only happens in setuid programs, > so if they are linked with a repaired ld.so, then I can't > change them to use the broken ld.so (unless I have root access, > in which case who needs the exploit). Exactly. poc _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx