Conversation

Notices

1. Embed this notice
   Phantasm (phnt@fluffytail.org)'s status on Monday, 21-Apr-2025 21:15:44 JST Phantasm
   >Update Linux to 6.1.133, which fixes multiple security vulnerabilities that may lead to a privilege escalation or information leaks.
   >Debian SA just lists a bunch of CVEs
   >check Debian security tracker
   >linux CVE text prefix cuts the important bits out
   >some seemingly AI-generated articles point to CVE-2024-53141 for which there was an exploit released 3 weeks ago
   >CVE not included in the SA list (security tracker lists it under resolved issue)
   • ✙ dcc :pedomustdie: :phear_slackware:, nyanide :nyancat_rainbow::nyancat_body::nyancat_face: and Johnny Peligro like this.
   • Embed this notice
     Phantasm (phnt@fluffytail.org)'s status on Friday, 16-May-2025 21:33:59 JST Phantasm

     in reply to
     This is also why bigger companies will happily pay for Red Hat's, ehm IBM's, license fees instead of going with Ubuntu or Debian. They usually provide good statements on vulnerabilities. Of course you can check their SAs even when you are using Ubuntu, but having them integrated, listable and easily upgradeable from the system is still a nice feature. Ubuntu has something similar with their pro client, but it's not as good yet. SUSE has almost the same thing as RHEL, but frankly not many people use SUSE in the enterprise world. At least not here. Maybe it's much more popular in Germany.
     
     https://ubuntu.com/security/CVE-2024-53141
     https://www.suse.com/security/cve/CVE-2024-53141.html
     https://access.redhat.com/security/cve/cve-2024-53141