It would break a bunch of other legitimate stuff that also checks uname and expe... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		saagarjha on April 3, 2024 \| parent \| context \| favorite \| on: The xz attack shell script It would break a bunch of other legitimate stuff that also checks uname and expects stuff to be there.

codezero on April 3, 2024 [–]

Maybe but only once in a while, I wonder how much legitimate software relies on the kernel name at runtime (vs compile time)?

Also consider it may only trigger if five syscalls to uname come in sequence from the same process. I suspect without evidence this pattern is less common.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact