as I explain in my blog, the real problem is libraries which are large amalgamations of unrelated routines, such as libsystemd in the case of CVE-2024-3094.
a good solution is to split up these giant libraries into smaller ones, thus allowing for the dependency graphs of programs to remain leaner.
there is nothing about sd_notify() which requires LZMA compression. nothing. it is a function which writes a supplied string to a UNIX socket, the path of which is provided on an environmental variable.
Ariadne Conill 🐰:therian: /
npub1lx…zhll9
2024-04-02 07:03:36
Author Public Key
npub1lxcygzft450wuzz3kh9xg7vnm25fsd668wgse0u334r65n8u9yksqzhll9Seen on
wss://relay.primal.netPublished at
2024-04-02 07:03:36Event JSON
{
"id": "39c6116b96bc37502308953ec9a88358185dcc75e858636e40e0a46f81f2faec",
"pubkey": "f9b044092bad1eee0851b5ca647993daa898375a3b910cbf918d47aa4cfc292d",
"created_at": 1712041416,
"kind": 1,
"tags": [
[
"proxy",
"https://social.treehouse.systems/users/ariadne/statuses/112200346302783570",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://social.treehouse.systems/users/ariadne/statuses/112200346302783570",
"pink.momostr"
]
],
"content": "as I explain in my blog, the real problem is libraries which are large amalgamations of unrelated routines, such as libsystemd in the case of CVE-2024-3094.\n\na good solution is to split up these giant libraries into smaller ones, thus allowing for the dependency graphs of programs to remain leaner.\n\nthere is nothing about sd_notify() which requires LZMA compression. nothing. it is a function which writes a supplied string to a UNIX socket, the path of which is provided on an environmental variable.",
"sig": "f7b0e01c5d3db4b61d6ef9deffcd5b32be100fac0c936a9ae96de75ed297d16c004684b7e1a4a044c2aa369eb4ca8315baff91a386e88c9bfd3be55540810a61"
}