Unauthenticated RCE vs all GNU/Linux systems (plus others), disclosure due in 2 weeks

https://x.com/evilsocket/status/1838169889330135132

https://i.rdrama.net/images/17271135760988767.webp https://i.rdrama.net/images/17271135759020903.webp

https://i.rdrama.net/images/172711357626477.webp

61
Jump in the discussion.

No email address required.

Are we thinking systemd?

Jump in the discussion.

No email address required.

Bet you 100 coins

Jump in the discussion.

No email address required.

Ugh if it does turn out to be systemd the anti-systemd tards are going to reach unimaginable levels of smug.

Jump in the discussion.

No email address required.

What terrifies me is if hackers were to find a RCE exploit and pwn 50 million servers. Imagine the backlash against peaceful systemd enjoyers?

Jump in the discussion.

No email address required.

:marseyxd:

Jump in the discussion.

No email address required.

It'll be worse than the exploit.

Jump in the discussion.

No email address required.

Im confused on the plus others designation. Is this referring to non gnu-linux like busy box and/or bsd? !linuxchads

Jump in the discussion.

No email address required.

thats a good point lmao, because all distros mentioned are strictly systemd. But all GNU/Linux should imply that it is not dependent on userspace configuration (other than like glibc and GNU stuff) so maybe its in the networking stack?

RUST IN THE LINUX KERNEL IS LONG OVERDUE

Jump in the discussion.

No email address required.

But all GNU/Linux should imply that it is not dependent on userspace configuration (other than like glibc and GNU stuff) so maybe its in the networking stack?

Gnu/linux implies it's userspace configuration, not kernel (that would be just linux). It's the term for what normal people call "linux" in reference to the family of operating systems, even if they have no gnu shit on them.

Jump in the discussion.

No email address required.

There was a recent RCE in Windows from bad IPv6 packets, maybe someone copied that vector for Linux?

Jump in the discussion.

No email address required.

It's not ipv6

Jump in the discussion.

No email address required.

Oh did he clarify down thread?

Jump in the discussion.

No email address required.

https://i.rdrama.net/images/1727118135621801.webp

would be worse :marseyhmm:

Jump in the discussion.

No email address required.

Oh hm :marseyhmm:

Jump in the discussion.

No email address required.

So a full on 10 instead of 9.9? Maybe "9.9" doesn't mean as much as it seems.

:#marseyponder:

Jump in the discussion.

No email address required.

I am using Gentoo OpenRC and I haven't been able to update in a few months because I'm r-slurred, I was worried for a minute lmao

Jump in the discussion.

No email address required.

Link copied to clipboard
Action successful!
Error, please refresh the page and try again.