7 Nov
2022
7 Nov
'22
08:26
https://bugzilla.suse.com/show_bug.cgi?id=1204605 https://bugzilla.suse.com/show_bug.cgi?id=1204605#c18 --- Comment #18 from Johannes Segitz <jsegitz@suse.com> --- Thanks for checking. I would argue that if an attacker is able to influence the environment of this root process than it's game over already. Also it only changes behavior in the error case, when the new policy has changes that are incompatible with the old one. So even if someone would be able to do this the impact is very very limited. Also as you stated this is an already existing mechanism, so I would like to reuse it if possible. -- You are receiving this mail because: You are on the CC list for the bug.