Ramin Honary on Nostr: > > "> [> #> doas](https://emacs.ch/tags/doas )> : multiple security issues: Buffer ...
> > "> [> #> doas](https://emacs.ch/tags/doas )> : multiple security issues: Buffer overflow (privilege escalation to root) Broken UID parsing falls back to root (CVE-2019-15900),
Incorrect group change behaviour (CVE-2019-15901)."
brokenix (npub1xy2…l5zl) using Rust would probably have prevent buffer overflows bugs, but not the UID parsing or group change behavior.
People who tried to sell me on "doas" often did by arguing that the simpler design and smaller code base was supposed to make it more secure. Well, security, as it turns out, is pretty damn hard.
Incorrect group change behaviour (CVE-2019-15901)."
brokenix (npub1xy2…l5zl) using Rust would probably have prevent buffer overflows bugs, but not the UID parsing or group change behavior.
People who tried to sell me on "doas" often did by arguing that the simpler design and smaller code base was supposed to make it more secure. Well, security, as it turns out, is pretty damn hard.