My understanding is that the iouring CVEs are about local privilege escalation, ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		hansvm 15 days ago \| parent \| context \| favorite \| on: We built another object storage My understanding is that the iouring CVEs are about local privilege escalation, not being appropriately sandboxed, etc. If you're only running code you trust on machines with iouring enabled then you're fine (give or take "defense in depth"). Is that not accurate?

6r17 15 days ago [–]

I really need to properly study the CVEs instead of making some surface judgement tbh - might have to take a look at it again

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact