Treasure to [email protected] • edit-220 hours agoUnauthenticated RCE vs all GNU/Linux systems to be fully disclosed in 2 weeks with no working fix yetnitter.poast.orgmessage-square24fedilinkarrow-up182arrow-down12file-textcross-posted to: [email protected][email protected]
arrow-up180arrow-down1external-linkUnauthenticated RCE vs all GNU/Linux systems to be fully disclosed in 2 weeks with no working fix yetnitter.poast.orgTreasure to [email protected] • edit-220 hours agomessage-square24fedilinkfile-textcross-posted to: [email protected][email protected]
minus-square@[email protected]linkfedilink42•1 day agoLet’s see if this really affects all Linux systems or if the stars need to align for this to actually be exploitable.
minus-squarePossibly linuxlinkfedilinkEnglish8•13 hours agoA 9.9 is pretty bad no matter what. They wouldn’t rank it almost a 10 if it was some obscure bug that is very hard to exploit. With that being said it is hard to know without details
minus-square@FangedWyvern42link10•15 hours agoI still remember hearing about a Ring 0 exploit in Windows (I may be misremembering, though) that required Ring 0 access. I think if an attacker has access to Ring 0, you’re already screwed anyway.
minus-square@[email protected]linkfedilink10•18 hours agoI agree, all this attention grabbing sound to me as if this is actually not a big deal. But we will see i guess.
Let’s see if this really affects all Linux systems or if the stars need to align for this to actually be exploitable.
A 9.9 is pretty bad no matter what. They wouldn’t rank it almost a 10 if it was some obscure bug that is very hard to exploit.
With that being said it is hard to know without details
I still remember hearing about a Ring 0 exploit in Windows (I may be misremembering, though) that required Ring 0 access. I think if an attacker has access to Ring 0, you’re already screwed anyway.
I agree, all this attention grabbing sound to me as if this is actually not a big deal. But we will see i guess.