Open sisungo opened 2 days ago
We can run executable files that are only given read but not execute access by copying them into a memfd and then call fexecve on the file descriptor. Should we restrict this?
memfd
fexecve
We can run executable files that are only given read but not execute access by copying them into a
memfd
and then callfexecve
on the file descriptor. Should we restrict this?