undefined | Better HN

0 pointscjbprime9y ago0 comments

> MSG_PEEK is a pretty obscure feature. I'm not personally aware of any commonly-run UDP code that actually uses it. You'll want to patch your kernel for sure, but unless you're running really crazy UDP servers, you're probably not immediately vulnerable.

Or unless you have untrusted users on your machine, in which case they can run crazy UDP servers and escalate to root.

0 comments

1 comments · 1 top-level

ajross9y ago

Yes, which is an important point: this serves as a local root escalation to any process which can open a UDP socket.

j / k navigate · click thread line to collapse