DigiNews

Summary

Openwall's oss-security mailing list reports PinTheft, a Linux local privilege escalation (LPE) that abuses the RDS zerocopy path and io_uring fixed buffers to overwrite page cache and spawn a root shell. A PoC is provided, showing exploitation via a SUID-root binary, with patches discussed and notes that the vulnerable setup is not universally present (CONFIG_RDS + CONFIG_RDS_TCP, currently default on Arch Linux in tests). The post highlights the risk, affected components, and initial mitigation/patch guidance.