Treasure@feddit.org to Linux@lemmy.ml · edit-21 month agoUnauthenticated RCE vs all GNU/Linux systems to be fully disclosed in 2 weeks with no working fix yetnitter.poast.orgexternal-linkmessage-square29fedilinkarrow-up193arrow-down14file-textcross-posted to: privacy@lemmy.ml
arrow-up189arrow-down1external-linkUnauthenticated RCE vs all GNU/Linux systems to be fully disclosed in 2 weeks with no working fix yetnitter.poast.orgTreasure@feddit.org to Linux@lemmy.ml · edit-21 month agomessage-square29fedilinkfile-textcross-posted to: privacy@lemmy.ml
minus-squarenarc0tic_bird@lemm.eelinkfedilinkarrow-up48·1 month agoLet’s see if this really affects all Linux systems or if the stars need to align for this to actually be exploitable.
minus-squareFangedWyvern42@lemmy.worldlinkfedilinkarrow-up12·1 month agoI still remember hearing about a Ring 0 exploit in Windows (I may be misremembering, though) that required Ring 0 access. I think if an attacker has access to Ring 0, you’re already screwed anyway.
minus-squareShortN0te@lemmy.mllinkfedilinkarrow-up12arrow-down1·1 month agoI agree, all this attention grabbing sound to me as if this is actually not a big deal. But we will see i guess.
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up10·1 month agoA 9.9 is pretty bad no matter what. They wouldn’t rank it almost a 10 if it was some obscure bug that is very hard to exploit. With that being said it is hard to know without details
Let’s see if this really affects all Linux systems or if the stars need to align for this to actually be exploitable.
I still remember hearing about a Ring 0 exploit in Windows (I may be misremembering, though) that required Ring 0 access. I think if an attacker has access to Ring 0, you’re already screwed anyway.
I agree, all this attention grabbing sound to me as if this is actually not a big deal. But we will see i guess.
A 9.9 is pretty bad no matter what. They wouldn’t rank it almost a 10 if it was some obscure bug that is very hard to exploit.
With that being said it is hard to know without details