Linux Vulnerability

Name
Email
Subject
Comment *
File	Select/drop/paste files here
* = required field	[▶ Show post options & limits] Confused? See the FAQ.

Flag
Oekaki	Show oekaki applet (replaces files and can be used instead)
Options	Do not bump (you can also write sage in the email field) Spoiler images (this replaces the thumbnails of your images with question marks)
Password	(For file and post deletion.)
Allowed file types:jpg, jpeg, gif, png, webm, mp4, pdf Max filesize is 8 MB. Max image dimensions are 10000 x 10000. You may upload 3 per post.

File: 1457904794672.jpg (52.47 KB, 305x508, 305:508, 1451187254131.jpg)

Linux Vulnerability Anonymous 03/13/16 (Sun) 21:33:14 No.542511

I cannot prove this to you, but it should become apparent if I am right or not in a few months at the very most. I work at a financial regulator in the United States. Google found a vulnerability in the Linux kernel dating back to 2008. It is something big enough that the agency I work for has been in contact with several companies about it, since the vulnerability could jeopardize the security of their trading operations (and we don't usually handle technical things like this). A patch is in the works, but it might be a while. So far it doesn't seem as if the vulnerability is being exploited in the wild. If someone stumbles upon it before the patch comes out, they could do hundreds of billions of dollars of damage. You have been warned.

Anonymous 03/13/16 (Sun) 21:36:23 No.542513

Lol

Anonymous 03/13/16 (Sun) 21:40:56 No.542515

ebin

Anonymous 03/13/16 (Sun) 23:10:21 No.542580

>>542511

This is terrible shitposting and you should feel ashamed of yourself.

Anonymous 03/13/16 (Sun) 23:10:26 No.542581

Some of you guys are alright. Don't use the Linux kernel tomorrow.

Anonymous 03/13/16 (Sun) 23:49:27 No.542605

Thats why im using HURD

:^)

Anonymous 03/13/16 (Sun) 23:52:59 No.542609

Silly OP, don't you know that Linux is incapable of getting viruses?

Anonymous 03/14/16 (Mon) 01:08:52 No.542645

>>542609

year of the linux desktop thanks to limbus torballs

Anonymous 03/14/16 (Mon) 01:18:04 No.542651

>>542511

Inb4 some retard believes this shit

Anonymous 03/14/16 (Mon) 01:25:34 No.542654

>>542651

Eh, I wouldn't be so sure. Last year someone posted in /tech/ that someone found a RCE 0day in libpng and they were already attempting to exploit it, and some months later it was confirmed that there was indeed a RCE exploit in libpng.

Anonymous 03/14/16 (Mon) 02:22:40 No.542676

>>542651

It's not really that hard to believe. Realistically speaking, the kernel already has plenty of undisclosed vulnerabilities no one found out yet. If you froze the kernel version and a had a team of security experts perform tests on it, they'd probably find at least one vulnerability eventually, even if it takes them months.

Anonymous 03/14/16 (Mon) 02:55:22 No.542708

>>542511

>If someone stumbles upon it before the patch comes out, they could do hundreds of billions of dollars of damage.

Same with shellshock, heartbleed and all the other big bugs

Anonymous 03/14/16 (Mon) 03:03:13 No.542713

>>542511

Friend, if this is true why not contact higher ups? The day before heartbleed went public they told distros about it and they had it patched within an hour or so.

>>542581

Underrated post

Anonymous 03/14/16 (Mon) 03:03:29 No.542714

There are plenty of bugs, everyone working on things at a low level knows at least one. I know two for SCTP and netfilter that go back 10 years, although probably no boxes outside of labs use the vulnerable configuration. Just sitting on them in case they're ever worth anything.

Anonymous 03/14/16 (Mon) 03:18:27 No.542723

>A patch is in the works, but it might be a while

Sorry but no.

Anonymous 03/14/16 (Mon) 05:00:58 No.542754

>autistic roleplaying a character of any importance

>g-g-guys look at me I can predict the future

>Linux gonna have CVEs

No fucking shit, sherlock. I bet you gloat that you can predict scores too by announcing some sports team somewhere on earth will win 3-1 within the next 18 weeks.

Anonymous 03/14/16 (Mon) 22:59:22 No.543241

>>542754

>character of any importance

I'm about as low level as its gets. I overheard people talking about this at the office.

>>542708

>>542723

You are probably right. I know very little about this stuff, I just write briefs for securities fraud cases.

Anonymous 03/14/16 (Mon) 23:43:50 No.543266

I don't like to indulge in speculation but tbh it's not outside the bounds of possibility. sometimes OP isn't a fag even when he acts like one.

but it's not like any computer can be truly secure: blobs, bios bugs, efi modules, built in IME, browser tracking and unique identifiers, it's a like a leaky sieve protecting your nuts from acid attack.

the fact that lenovo has advanced persistent threats running at system level by default should have clued you in by now: security is a state of mind.

Anonymous 03/14/16 (Mon) 23:54:06 No.543273

File: 1457999647021.jpg (97.21 KB, 1003x900, 1003:900, 1455348119147.jpg)

>>542511

Anonymous 03/15/16 (Tue) 02:36:34 No.543375

File: 1458009394822.png (163.15 KB, 480x480, 1:1, 10 Kevin.png)

>>542581