| Deutsch English Français Italiano |
|
<vd59o7$j57m$1@dont-email.me> View for Bookmarking (what is this?) Look up another Usenet article |
Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail From: RonB <ronb02NOSPAM@gmail.com> Newsgroups: comp.os.linux.advocacy Subject: Re: 9.9/10 security vulnerability affecting Linux (and others) set to be revealed on October 6th Date: Fri, 27 Sep 2024 03:45:11 -0000 (UTC) Organization: A noiseless patient Spider Lines: 41 Message-ID: <vd59o7$j57m$1@dont-email.me> References: <2O1JO.214184$FzW1.145017@fx14.iad> <vd2mdm$1ue8$1@dont-email.me> <alcJO.194436$kxD8.182014@fx11.iad> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Injection-Date: Fri, 27 Sep 2024 05:45:12 +0200 (CEST) Injection-Info: dont-email.me; posting-host="8e7bc9ee43eb398a85f15df278e90bcc"; logging-data="627958"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/xn9YGH8d+BND7AzmtlwvR" User-Agent: slrn/1.0.3 (Linux) Cancel-Lock: sha1:CMkzKGWlcoyWvs1GjsPrpLTAcPU= Bytes: 2871 On 2024-09-26, CrudeSausage <crude@sausa.ge> wrote: > On 2024-09-26 12:03 a.m., RonB wrote: >> On 2024-09-26, CrudeSausage <crude@sausa.ge> wrote: >>> Worse than Heartbleed, Meltdown or Spectre. According to a GitHub >>> developer: >>> >>> "From a generic security point of view, a whole Linux system as it is >>> nowadays is just an endless and hopeless mess of security holes waiting >>> to be exploited." (kind of like Chris Ahlstrom's body) >>> >>> <https://cybersecuritynews.com/critical-unauthenticated-rce-flaw/> >> >> Yet another "catastrophic" Linux security threat that will be fixed within >> days. > > They're working on it and so far coming up with no way of fixing it. I > wouldn't be surprised if there is no solution by October 6th. If that is > the case, you just know that bad actors will be attacking Linux > relentlessly from October 7th on. This looks like the real deal. 9.9/10 > is pretty serious when you consider that the aforementioned issues were > rated between 5 and 7 on 10. We'll see. I've seen these "horror stories" come and go in the past. Maybe I'm wrong this time. >> You realize that Cyber Security News makes their case for existence by >> hyperventilating about potential "catastrophic" security threats, right? > > Perhaps, but the developers on GitHub have been freaking out as well to > a point that Lunduke felt it necessary to bring this problem to light. > Those developers are usually arrogant about their ability to fix such > issues, not this time. Okay, If I'm lulled into a false sense of security than I guess I'll be wrong. Still not particularly worried about it though. -- “Evil is not able to create anything new, it can only distort and destroy what has been invented or made by the forces of good.” —J.R.R. Tolkien