Is there a URL for this announcement?
-
-
-
I don’t know. Looks like they just emailed affected customers.
End of conversation
New conversation -
-
-
not all ;) all before jan 2019 and those which have not been upgraded since
-
D'ailleurs, le mail indique quelque chose de trompeur : il ne suffit pas d'installer la nouvelle version pour que ça soit corrigé, il faut désinstaller l'ancienne. Et non, ce n'est PAS "mineur" de pouvoir écraser n'importe quel fichier !https://twitter.com/chtitux/status/1156906191265697792 …
- 1 more reply
New conversation -
-
-
"mineure" ? lol
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Here's the vulnerability, I think: https://gist.github.com/defuse/e31a2ba74f71851b3c77ce05483afca1#file-usage-pl-L63-L79 … CPU_STATS = "/tmp/cpu_stats" so you can put a symlink there to clobber any file with the contents of /proc/stat.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.