Critical Unauthenticated RCE Flaws in CUPS Printing Systems - eviltoast
    • Toes♀@ani.socialOP
      link
      fedilink
      arrow-up
      4
      ·
      3 个月前

      Basically an unauthenticated perl interpreter with root open to the network by default in most configurations across a couple decades.

      It’s about as bad as it can be?

      • curbstickle@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        4
        arrow-down
        1
        ·
        3 个月前

        Compared to the original claim that it was kernel level and spread across literally everything?

        No, no its not as bad as it was originally claimed.

        Is it bad? Yes. Is it kernel level bad? No. It can easily be mitigated before a fix is out by blocking 631 and dns-sd traffic. It is not as bad as it was claimed to be.

      • progandy@feddit.org
        link
        fedilink
        arrow-up
        1
        ·
        3 个月前

        Is it common for cups to run as root? It should have its own user, but that is still not good.