On Fri, Jul 2, 2021 at 4:31 PM Kees Cook <keescook@xxxxxxxxxxxx> wrote:
>
> Right -- the info leak would be snooping on what a privileged process
> was doing with a given fd? Similar stuff has been used to do typing
> pattern analysis with login passwords, but that's a stretch here, I
> think. Hmm.
So I think you'd see the directory list, but generally that's just the
file descriptor numbers.
Which is information you shouldn't have access to, but it's probably
not very *interesting* information.
I think it would be worth fixing but possibly not a very high priority.
Linus
