[gull] Severe Unauthenticated RCE Flaw (CVSS 9.9) in GNU/Linux Systems Awaiting Full Disclosure
Philippe Strauss
philippe at straussaudio.ch
Sat Sep 28 11:11:51 CEST 2024
Oui c'est bien ça:
https://www.thestack.technology/critical-9-9-linux-bug-cups-your-ears-the-details-are-now-here/
https://www.phoronix.com/news/Linux-CVSS-9.9-Rating
https://blog.cloud66.com/ubuntu_snap_packages_and_cups_cve (!!!)
Et le thread sur le sujet sur la mailing-list openwall:
https://www.openwall.com/lists/oss-security/2024/09/26/5
Ce n'est pas la première fois que CUPS est la cause d'une
vulnérabilité rel. sévère.
On Sat, Sep 28 2024 at 11:00:14 AM +02:00:00, felix via gull
<gull at forum.linux-gull.ch> wrote:
> J'ai trouvé ça:
>
> https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/
>
>
> Le Tue, Sep 24, 2024 at 06:58:40PM +0200, Marc SCHAEFER via gull a
> écrit :
>> On Tue, Sep 24, 2024 at 04:18:49PM +0200, Philippe Strauss via gull
>> wrote:
>> >
>> https://securityonline.info/severe-unauthenticated-rce-flaw-cvss-9-9-in-gnu-linux-systems-awaiting-full-disclosure/
>>
>> Oui, on se réjouit :)
>
> --
> Félix Hauri - <felix at f-hauri.ch> - http://www.f-hauri.ch
> _______________________________________________
> gull mailing list
> gull at forum.linux-gull.ch
> https://forum.linux-gull.ch/mailman/listinfo/gull
More information about the gull
mailing list