Does allowing binfmt_misc significantly increase the attack surface for unprivileged users that already can launch – native – binaries?
The Linux kernel lets me register and execute additional binary formats as if they were regular executables.
I am thinking of this mostly as a convenience method, completing what specifying the interpreter via Shebang already partially acc… Continue reading Does allowing binfmt_misc significantly increase the attack surface for unprivileged users that already can launch – native – binaries?