Thanks @Giovanni Pellerano for bumping this again. I can confirm that
this is an issue in python3.9 (3.9.7, "3.9.7-2build1") and python3.10
(3.10.0, "3.10.0-2") on 21.10 (amd64). I imagine if nothing is done, the
upcoming 22.04 LTS will have the issue in its default python(3), which I
imagine will
@Giovanni Pellerano (evilaliv3): So while lack of any of these
(currently mainstream) hardening features is concerning with regards to
exploitation (especially the lack of ASLR in a generally non-highly
interactive exploitation context), my guess is that the upstream Python
build toolchain is just
This is currently an issue in 19.10's systemd (version 242). By default,
unless services are configured to set LimitMEMLOCK, they will have 64k
as their memlock limit (though oddly, systemd bumped its own memlock
limit higher than previous versions have used). The only processes not
affected are
