With the recent discovery of the Symbiote vulnerability, it is now apparent that we need a mitigation for LD_PRELOAD injection attacks and similar. One way we may be able to prevent this exploitation is by being able to set LD_PRELOAD and other variables that impact security as immutable.
Is there any means of accomplishing this, via SELinux, AppArmor, namespaces, cgroups, or any other mechanism?
