cyberciti.biz
Make sure to apt update && apt upgrade (or pacman -Syu or whatever other shitty package manager you have) and do a full reboot ASAP. This is an important bugfix.
Linux Vuln - Make sure to patch, boys
Charles Evans
Landon Hughes
>he has sudo installed
lol
Brayden Miller
>using sudo instead of su
Anthony Hill
haha funny and creative and original
Tyler Wood
>For example, if we execute Sudo through the symlink “./ 1 “, get_process_ttyname() calls sudo_ttyname_dev() to search for the non-existent tty device number “1” in the built-in search_devs[].
What? A symlink can give me root privilege?
Evan Bailey
I've never used sudo, I just `su -'.
Jack Edwards
k
Cameron Wright
I use sudo only once in any Linux desktop installation
sudo passwd
After that, su -
Carter Gray
another day, another massive linux vuln being exploited in the wild along with the other hundreds of unreported ones...
Jason Gray
This shit posting doesn't get you any kind of Sup Forums credit or rep. Just fuck off, dude.
Dominic Nelson
LMAO! Freetard upset that his open sores software isn't as secure as he thought? Pathetic!
Brody Foster
Just consider the fact that you're taking the time and energy to type these things out. :(
Aaron Wilson
>This is an important bugfix.
Only for multi user setups.
Has no impact on your single user desktop/laptop.
Joshua Mitchell
I'm taking a shit at work right now, getting paid to browse the internet
What's your excuse
Brandon Jenkins
I made a friendly thread informing people of a bug fix.
Xavier Powell
No, applications have their own users, such as nginx. This will allow anyone that exploits these programs to get full root access.
Austin Wilson
Wait so like
You're telling me someone with sudo permissions can run commands as root?
Fuck dude
Landon Campbell
hey remember wannacry
Dominic Adams
>It was discovered that Sudo did not properly parse the contents of /proc/[pid]/stat when attempting to determine its controlling tty.
>let's make a really important interface between user space and kernel space text-based so every program has to parse it
Hudson Davis
No one makes those users sudoers.
Lincoln Foster
Hey remember dirtycow?
David Rogers
>Linux, a piecemeal system assembled by hobbyists, needs a vulnerability patched for the 20th time in the past month
Wake me up when there's some actual news
Angel Green
Aniki is sleeping, don't wake him up
Caleb Smith
WAKE UP
Daniel Bell
...
Jackson Thomas
Already received the update some days ago but thanks op.
Logan Allen
sudo (1.8.20p1-1) unstable; urgency=high
* New upstream version with fix for CVE-2017-1000367, closes: #863731
-- Bdale Garbee Tue, 30 May 2017 14:41:58 -0600
sudo (1.8.20-1) unstable; urgency=medium
* New upstream version
-- Bdale Garbee Wed, 10 May 2017 10:25:46 -0600
Ian Flores
>using spanish as system language
fucking disgusting dude. Por lo menos cambialo antes de subirlo :v
Cameron Ortiz
for this exploit to work the attacker has to be a sudoer first
fucking plebs
Austin Lopez
doas masterrace.
Daniel Harris
>sudo -i
>enter password
>#
ZOMG PWND!
Meanwhile...
theregister.co.uk
theregister.co.uk
Joshua Adams
~$ sudo
-bash: sudo: command not found
I'm safe.
Jaxon Nguyen
>comparing a local privilege escalation exploit to a remote code execution one
Confirmed for braindead.
Nathan Johnson
>not running root all the time so you can fuck up and delete everything
Evan Taylor
rm -rf /
Leo Baker
>do a full reboot
why?
William Clark
Because I want to ruin your fucking uptime.
James Bell
I think I'm doing it wrong
Isaiah Morgan
BTFO and rekt