Dirtyfrag: Universal Linux LPE

[oncallthrow]

> this is why we don't run as root

The entire point is that you can escalate to root

Dirtyfrag: Universal Linux LPE

[oncallthrow]

can this also be used to obtain container escape ?

[synack]

If your container has setuid binaries and these modules are loaded, yes.

[lights0123]

With the exploits published as-is, you'll only get root inside the container: there's no explicit namespace break, and calling setuid() in a container just gives you root in the container.

However, it can be used to modify files that are passed into the container (e.g. Docker run -v), or files that are shared with other containers (e.g. other Docker containers sharing the same layers). kube-proxy with Kubernetes happens to share a trusted binary with containers by default, which is how it can be exploited: https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kuber...

[miduil]

It's poisoning the filesystem cache, if you don't have a setuid binary handy you just poison anything else that gets executed by the host.

[aaronmdjones]

You don't need any setuid binaries. You could just as easily use the vulnerability to add a job to crontab(5) that causes the cron daemon to run whatever you want as root.

[awoimbee]

And your containers need to have specific capabilities enabled, which aren't by default on kubernetes and podman.

Tip: Web requests should not be measured in Hz [Hertz]

[oncallthrow]

Just use rps

Replace IBM Quantum back end with /dev/urandom

[oncallthrow]

Shame that this report is LLM-generated slop.

I wrote a CHIP-8 emulator in my own programming language

[oncallthrow]

A GitHub README.md without a torrent of AI-generated slop? Refreshing

Show HN: I made a calculator that works over disjoint sets of intervals

[oncallthrow]

have you considered implementing a +- operator?

For example a +- b would be [a - b, a + b]

Pope Leo XIV denounces the 'delusion of omnipotence' he says fuels the Iran war

[oncallthrow]

I’ve spent dozens of hours reading about the conflict on social media. I don’t think I’ve seen a single western account, outside of schizophrenic conspiracy theorist anons, saying that Iran is some paradise that can do no wrong.

Pope Leo XIV denounces the 'delusion of omnipotence' he says fuels the Iran war

[oncallthrow]

Yes, because that quite literally isn’t “news”. Western leaders including the pope have condemned jihadism for decades.

A cryptography engineer's perspective on quantum computing timelines

[oncallthrow]

No, it will likely be a state actor who reaches it first, who will never give away such a capability so easily

A cryptography engineer's perspective on quantum computing timelines

[oncallthrow]

No, and even if we could, it would require a migration of approaching the same difficulty of a migration to PQ, at which point why not just migrate to PQ