securityonline.info
I would have to wonder which part of Linux was vulnerable since there are many kernels out there. I use nftables to drop inbound connection requests unless they are for an approved port. It would have to be a flaw that people have missed for decades. In order for remote code execution to occur it would have to be a bug in the kernel's network stack or some other process already running on the system that reached out to another system. Nice article though. Thanks for sharing. I look forward to finding out more about this.Severe Unauthenticated RCE Flaw (CVSS 9.9) in GNU/Linux Systems Awaiting Full Disclosure
Stay up to date with the latest news on a critical Linux vulnerability. Learn about its severity, impact, and ongoing efforts to find a fix.
nvd.nist.gov
Then how does that affect all Linux distributions as long as Linux has existed?It does not have to be old, just introduced recently. This happened before including nftables where bug was introduced in kernel 5.14 - 6.6
NVD - CVE-2024-1086
Hopefully the issue is going to be fixed at the end of this week.
I wonder if it is limited to RH and Debian derivatives only.
where it says that this vulnerability from f33dm3bits first post is as old as Linux? There few Linux vulnerabilities not fixed purposely for the reason of backward compatibility. But these are known. Unless something new popped up about one of these. Although nothing specific is known.
It said it affects all Linux distributions. I just figured all meant everything.
