alt Hacker NewsAre they already vulnerable to RCE as an unprivileged user? Hopefully not.
An LPE only allows an attacker who can already execute code on the system to become root. So, bad, yes, but it doesn't mean you are immediately pwned.
Replies
hughw • yesterday at 10:43 PM
Should I rush to Lambda or ECS and turn off all my containers sharing a host with who the hell knows?
➕ show 3 replies
And for a single user desktop, an LPE is almost meaningless as all the really important files are in $HOME and accessible without root.