the_emulator

icon location coding in VR icon location Your worst nightmare, the 100x noob that has nothing on his profile.

Results 3 issues of the_emulator

ACLs allow bypassing sudoedit's writability checks

4 comment

I have found one more extremely similar bypass than the previously-reported #1310 with ACLs this time: Prep: (with alice here by the user which will exploit) ``` sudo su sysctl...

bug

fix: malicious or compromised PAM module can DOS sudo-rs via num_msg=-1

Fix the problem by throwing an error if the number is negative or unexpected, added a test too. This is a suggestion only. Thread: https://github.com/trifectatechfoundation/sudo-rs/issues/1311

C-pam
chore

Malicious or misconfigured PAM module can DOS sudo-rs via num_msg=-1

2 comment

PAM modules can send a `num_msg`, which is handled improperly by `sudo-rs`, as it is assumed this is a positive number without any checks. Negative PAM message counts cause integer...

C-pam
chore