Today I was looking up René Rebe's livestream last night on the madness of the way we develop software like it's still the '70s. He was talking about kernel/desktop developer community interactions, I think. I need to look again, ... but I looked up his home page https://rene.rebe.de/about/ and found is other channel , There I found this: It's about how the FSF handled https://nvd.nist.gov/vuln/detail/CVE-2023-4911 (Posted October 3, last updated November 6, 2023): from https://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalation.html : The GNU C Library's dynamic loader "find[s] and load[s] the shared objects (shared libraries) needed by a program, prepare[s] the program to run, and then run[s] it" (man ld.so). The dynamic loader is extremely security sensitive, because its code runs with elevated privileges when a local user executes a set-user-ID program, a set-group-ID program, or a program with capabilities. Historically, ...