So, this has been going around the press
https://scarybeastsecurity.blogspot.com/2016/12/redux-compromising-linux-...
Upstream tracker added seccomp sandboxing in response to an earlier
exploit (against F24) found by the same researcher, and we actually
have an update for that
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cc3ab3b292
unfortunately sitting in testing at the time of the blog post's
publication and just out to stable updates today.
Can someone confirm that this update at least mitigates the issue
highlighted in the blog?
--
Matthew Miller
<mattdm(a)fedoraproject.org>
Fedora Project Leader