fapolicyd is vulnerable to remote code execution. The build script misdetects the run time linker due to the improper naming conventions which causes the ld_so
pattern matcher to not work correctly, resulting in remote code execution vulnerability.
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/
access.redhat.com/errata/RHSA-2022:1898
access.redhat.com/errata/RHSA-2022:4824
access.redhat.com/security/cve/CVE-2022-1117
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=2066904
bugzilla.redhat.com/show_bug.cgi?id=2068171
github.com/linux-application-whitelisting/fapolicyd/commit/38a942613f93824c53164730b2b7a2f75b8cd263