See URL for details and demo, please. Unfixed upstream. Reproducible: Always
(remember to CC maintainers if you can) thanks!
(In reply to Sam James from comment #1) > (remember to CC maintainers if you can) Didn't think of it, sorry. Good point, thanks!
https://jdebp.uk/FGA/TIOCSTI-is-a-kernel-problem.html
(In reply to William Hubbs from comment #3) > https://jdebp.uk/FGA/TIOCSTI-is-a-kernel-problem.html I wish that article was promoted less than more, because it effectively promotes not fixing userland and has four "[..] are false" statements that are not true: If I have two pieces of software and one can be exploited and the other cannot to gain privileges via TIOCSTI, then the bug is in that software that can be exploited, not in the kernel. A controlling terminal should not be handed to a process with different permissions in the first place, hence it needs a pane of PTY glass in front of it. There are people working on that topic but it takes time.