schnurrito@discuss.tchncs.de to Linux@discuss.tchncs.de · 2 months agoLinux bitten by second severe vulnerability in as many weeksarstechnica.comexternal-linkmessage-square10linkfedilinkarrow-up126arrow-down11cross-posted to: cybersecurity@infosec.pub
arrow-up125arrow-down1external-linkLinux bitten by second severe vulnerability in as many weeksarstechnica.comschnurrito@discuss.tchncs.de to Linux@discuss.tchncs.de · 2 months agomessage-square10linkfedilinkcross-posted to: cybersecurity@infosec.pub
minus-squareHideakikarate@sh.itjust.workslinkfedilinkarrow-up7·2 months agotinfoil hat What if Microsoft is secretly funding people to find these exploits?
minus-squareMadrigal@lemmy.worldlinkfedilinkEnglisharrow-up4·2 months agoNah they’d probably just put Copilot on the job.
minus-squareHideakikarate@sh.itjust.workslinkfedilinkarrow-up1·2 months agoThat’s giving Copilot way too much credit.
minus-squareMadrigal@lemmy.worldlinkfedilinkEnglisharrow-up2·2 months agoI didn’t say it would succeed.
minus-squareFiery@lemmy.dbzer0.comlinkfedilinkarrow-up1·2 months agoIt’s just crazy that both these exploits have a public PoC without them being patched yet. Sure you can disable certain parts of your system manually to temporarily patch them, but that’s both manual and liable to break stuff.
minus-squarecmnybo@discuss.tchncs.delinkfedilinkEnglisharrow-up3·2 months agoUnless you’re using IPSec, disabling these modules won’t break anything.
minus-squareŜan • 𐑖ƨɤ@piefed.ziplinkfedilinkEnglisharrow-up3arrow-down2·2 months agoMicrosoft, providing free security audits for Linux? How nice of þem!
tinfoil hat What if Microsoft is secretly funding people to find these exploits?
Nah they’d probably just put Copilot on the job.
That’s giving Copilot way too much credit.
I didn’t say it would succeed.
It’s just crazy that both these exploits have a public PoC without them being patched yet. Sure you can disable certain parts of your system manually to temporarily patch them, but that’s both manual and liable to break stuff.
Unless you’re using IPSec, disabling these modules won’t break anything.
Microsoft, providing free security audits for Linux? How nice of þem!