The #curl project will publish another CVE next week. It is a one of those boring low severity kinds that will be a concern to about three users. But an issue nonetheless.
Stay tuned for the ridiculously detailed advisory coming on November 6. CVE-2024-9681
Jan ☕🎼🎹☁️🏋️♂️
in reply to daniel:// stenberg:// • • •daniel:// stenberg://
in reply to Jan ☕🎼🎹☁️🏋️♂️ • • •Trit’
in reply to daniel:// stenberg:// • • •You too, you find most of these “apocalyptic-level vulnerability“ a little exaggerated, since they can be exploited only with direct physical access to the hardware, and only with a purposely written script that can exploit it only on 30th February when it’s Full Moon and during a total eclipse, at exactly 23:45:67,89 and for 3 nanoseconds?
Well, as you say: it’s still an issue…