The 6.16 kernel will include a number of changes to how the kernel handles
the processing of core dumps for crashed processes. Christian Brauner explained
his reasons for doing this work as: "Because I'm a clown and also I had
it with all the CVEs because we provide a **** API for userspace". The handling of core dumps has indeed been a constant source of
vulnerabilities; with luck, the 6.16 work will result in rather fewer of
them in the future.
https://lwn.net/Articles/1024160/
--- SBBSecho 3.27-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (86:200/23)