<![CDATA[Dev1 Galaxy Forum / Linux security hole - The Register]]> https://dev1galaxy.org/viewtopic.php?id=6053 Thu, 05 Oct 2023 13:09:48 +0000 FluxBB <![CDATA[Re: Linux security hole - The Register]]> https://dev1galaxy.org/viewtopic.php?pid=44702#p44702 Hello:

boughtonp wrote:

... already released through the security repos a day before the article.

See?
No time at all.  8^P

Cheers,

A.

]]> Thu, 05 Oct 2023 13:09:48 +0000 https://dev1galaxy.org/viewtopic.php?pid=44702#p44702 <![CDATA[Re: Linux security hole - The Register]]> https://dev1galaxy.org/viewtopic.php?pid=44701#p44701 Altoid wrote:

As usual. we'll see a patch/fix in no time at all.

The patch was already released through the security repos a day before the article.

]]> Thu, 05 Oct 2023 11:48:25 +0000 https://dev1galaxy.org/viewtopic.php?pid=44701#p44701 <![CDATA[Linux security hole - The Register]]> https://dev1galaxy.org/viewtopic.php?pid=44693#p44693 Hello:

This appeared on The Register tonight:

-----------------------------------------------------------------------------------------------------

Make-me-root 'Looney Tunables' security hole on Linux needs your attention
By Thomas Claburn - Wed 4 Oct 2023 // 21:27 UTC
https://www.theregister.com/2023/10/04/ … ables_bug/

-----------------------------------------------------------------------------------------------------

Thomas Claburn wrote:

... a security hole that can be fairly easily exploited by rogue users, intruders, and malicious software to gain root access ...
... a buffer overflow vulnerability in the GNU C Library's handling of an environmental variable ...
... arises from the GNU C Library's dynamic loader (ld.so) mishandling of the GLIBC_TUNABLES environmental variable.

As usual. we'll see a patch/fix in no time at all.

Best,

A.

]]> Thu, 05 Oct 2023 02:40:38 +0000 https://dev1galaxy.org/viewtopic.php?pid=44693#p44693