fsebugoutzone.org:9999

       Post AhchtIUiKTWlSahjsG by sanfierro@pony.social
 (DIR) More posts by sanfierro@pony.social
 (DIR) Post #AhchtI0w7BhxyElxSa by whitequark@mastodon.social
       2024-05-06T18:47:05Z
       
       1 likes, 0 repeats
       
       Several vulnerabilities have been discovered in the Linux kernel(this lists 250 CVEs. I am not sure who this email is for anymore)
       
 (DIR) Post #AhchtIUiKTWlSahjsG by sanfierro@pony.social
       2024-05-06T18:50:56Z
       
       0 likes, 0 repeats
       
       @whitequark As someone who&#39;s never hacked the Linux kernel and uses it only as a regular (not really power) user, this feels scary, although I feel like I need someone savvy to explain to me what the implications are, etc
       
 (DIR) Post #AhchtIpH61ySUMK9vE by whitequark@mastodon.social
       2024-05-06T18:48:22Z
       
       1 likes, 0 repeats
       
       oh I see, the madmen have actually went through with their threat to give every commit a CVE number, e.g. https://cve.circl.lu/cve/CVE-2024-27078this is going to be astonishingly disruptive but also incredibly, unbelievably funny to watch, so it&#39;s impossible to say if it&#39;s good or not
       
 (DIR) Post #AhchtJ5a7P1BIvxBL6 by whitequark@mastodon.social
       2024-05-06T18:53:19Z
       
       1 likes, 0 repeats
       
       @sanfierro the Linux kernel maintainers are being petty about people somewhat arbitrarily classifying changes to the kernels as &quot;security-sensitive&quot; and &quot;not security-sensitive&quot; so they decided to publish literally every change as if it was a security bug, because it _might_ and there is no downside (to them) to doing it
       
 (DIR) Post #AhciPcVNSunemyQZ8K by shironeko@fedi.tesaguri.club
       2024-05-06T18:59:43.284707Z
       
       0 likes, 0 repeats
       
       @whitequark this is gold
       
 (DIR) Post #AhcwYWWcT0J8Ct9FEu by whitequark@mastodon.social
       2024-05-06T18:52:12Z
       
       0 likes, 0 repeats
       
       also it can obviously be solved by simply rewriting the Linux kernel in Rust, as a result of which it will stop having CVEs
       
 (DIR) Post #AhcwYX5MNq63wdOzOC by lanodan@queer.hacktivis.me
       2024-05-06T21:36:31.924832Z
       
       0 likes, 0 repeats
       
       @whitequark *coughs in rust stdlib itself getting CVEs*
       
 (DIR) Post #AhcwdG5qzFaSh0t1Ky by whitequark@mastodon.social
       2024-05-06T18:54:21Z
       
       1 likes, 0 repeats
       
       @sanfierro this is like a 3rd grader level immaturity about what is a complex sociotechnical issue; immaturity so deep the systems are not actually prepared to deal with it so this will make a bunch of entirely unrelated people&#39;s lives very miserable for a while
       
 (DIR) Post #AhcwdHLqJHyGatNItk by piggo@piggo.space
       2024-05-06T18:56:32.013655Z
       
       1 likes, 0 repeats
       
       @whitequark @sanfierro this is similar to how in a programming course we had to write some java and the teacher did not set any limits on execution time or memory usage so I generated an incredibly complex nested class that eventually passed the automated test and they had to accept it as a solution