'sticky bit set' patch
+tmpfs /dev/shm tmpfs mode=1777 0 0
/dev/shm is a world-writable directory, like /tmp, & should also
have the sticky bit set. Without this, any user can delete &
replace another user's files in /dev/shm.
Bug has been present since /dev/shm was added to the skeleton /etc/fstab, but appears to have been fixed for systems using systemd by commit 76fc9275f14e "system: separate sysv & systemd parts of the skeleton"…
#OpenRC #security
https://www.openwall.com/lists/oss-security/2024/04/11/12