Open helmutg opened 1 year ago
While set-user-alarm is protected from LD_PRELOAD itself, it does not sanitize this variable before executing systemctl as such a malicious user should be able to take control of the systemctl invocation.
set-user-alarm
LD_PRELOAD
systemctl
While
set-user-alarmis protected fromLD_PRELOADitself, it does not sanitize this variable before executingsystemctlas such a malicious user should be able to take control of thesystemctlinvocation.