[$] The difficulty of safe path traversal
Date:
Tue, 06 Jan 2026 17:14:43 +0000
Description:
Aleksa Sarai, as the maintainer of the runc container runtime , faces a constant battle against security problems. Recently, runc has seen another instance of a security vulnerability that can be traced back to the difficulty of handling file paths on Linux. Sarai spoke at the 2025 Linux Plumbers Conference ( slides ; video )
about
some of the problems runc has had with path-traversal vulnerabilities, and to ask people to please use libpathrs , the library that he has been developing for
safe path traversal.
======================================================================
Link to news story:
https://lwn.net/Articles/1050887/
--- Mystic BBS v1.12 A49 (Linux/64)
* Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)