1. 13

  2. 5

    Why is this still a blacklist instead of a whitelist? There are many more environment variables in glibc that might result in undefined behavior or worse.

    1. 4

      Stuffing all the things into the environment of unsuspecting processes is one of those vulns that keeps on giving.