mastodon.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
The original server operated by the Mastodon gGmbH non-profit

Administered by:

Server stats:

366K
active users

@FiLiS @elacheche "plus others" but won't give any details? I'm super skeptical tbh

prove one distro vendor confirmed this that isn't shipping glibc please

edit: ok so he's got a blog post up now and it does look like CUPS, but now I want this guy to get fucked by a dildo full of razor blades for lying about the impact

it is not an RCE against "all GNU/Linux and others", but an RCE against "possibly anything running CUPS that you can reach on the network"

Completely different scope. He was trolling for fame.


https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/
evilsocket · Attacking UNIX Systems via CUPS, Part IHello friends, this is the first of two, possibly three (if and when I have time to finish the Windows research) writeups. We will start with targeting GNU/Linux systems with an RCE. As someone who’s

@feld @FiLiS

I agree, he made it look like something "built-in" or business/user critical..

The CVE can have a high score, but it's impact is not big.. And most of the "default" cups installations (aka end users) are not reachable via the net..