Possible Linux Severe CVSS 9.9/10 Unauthenticated RCE Flaw - GNU/Linuxcels: make sure to keep your systems up to date

[std::string]

Either this is a nothing burger or we're all sons of bitches. Guess we'll just have to wait and see

I assume it's a nothingburger.

If he tagged FreeBSD for a valid reason and not just his manic breakdown it's gotta be cups or sshd or one of those ancient unix things like rlogind which are known to be insecure anyway.

 

[ParasiteSteve]

So basically, if this is real, once a patch is live, it's probably a 2 minute update to fix. Whereas if it was something in Windows, it would be a 500mb download that would take 20 minutes to update each system you run it on.

"WINDOWS! WINDOWS! WINDOWS!"

The Average TrannyLinux user.

 

[Milkshake Sniffer]

Does this mean I have to reinstall Temple OS?

 

[The Connected Nose]

Does this mean I have to reinstall Temple OS?

It's the only way to be sure.

And then you can play the glownigger-blasting game.

 

[Weapons of Mass Tardation]

https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/

https://archive.ph/wip/XU8Az

It's fucking NOTHING. Who the FUCK thought this was a 9.9 CVE? Heartbleed was fucking 7.5. What the actual fuck. Good lord. Absolutely no surprise that CUPS is a giant pile of shit. The bigger question is what kind of retard has CUPS exposed to the open internet?

 

[Celebrate Nite]

It'd be pretty funny if it was CUPS because it's made by Apple and is the worst software to have ever been on Linux. Fuck CUPS.

is there an alternative to printing on Linux or is CUPS the only thing?

 

[Weapons of Mass Tardation]

is there an alternative to printing on Linux or is CUPS the only thing?

Outside of ancient (see lpd) and esoteric (sending postscript files directly to postscript printers, sending emails to printers that are so enabled, or plugging a jumpdrive into a given printer because fuck networking), basically no. Even Samba which does the Windows server message block printer sharing shit really just uses CUPS under the hood. It feels kind of surprising that I've never seen an alternative, given that shit like SSHD has at least 3 variants (openssh, dropbear, busybox) that I can immediately think of off hand.

 

[std::string]

It's fucking NOTHING. Who the FUCK thought this was a 9.9 CVE? Heartbleed was fucking 7.5. What the actual fuck. Good lord. Absolutely no surprise that CUPS is a giant pile of shit. The bigger question is what kind of retard has CUPS exposed to the open internet?

This dude is a straight up retard.

A VULNERABILITY THAT AFFECTS EVERY LINUX SYSTEM except, like, let's look at the RHEL documentation

Oh, huh.

 

[Rust Troony]

sudo pacman -R cups lib32-cups
error: target not found: cups
error: target not found: lib32-cups

Whew, so glad im not stuck in the 2000s still using overpriced chink printers. Whoever gave this a 9.9 CVE is a troon and needs to be fired, and if your server has cups enabled for whatever reasons and is connected to internet without some kind or firewall you are a jeet and need to be fired.

 

[P R O X Y]

Has anyone confirmed the actual RCE yet? I hate shit like this. Only thing he was missing is some retarded domain name + logo for it. Maybe after this they'll make some t-shirts so we can remember this critical CVE.

I'm guessing SSH related if its "every linux system".

 

[Demonslayer1776]

It'd be pretty funny if it was CUPS because it's made by Apple and is the worst software to have ever been on Linux. Fuck CUPS.

Truly a prophet

 

[Gigantic Penguin]

The bigger question is what kind of retard has CUPS exposed to the open internet?

There is (what appears to be) industrial equipment with a remote desktop exposed to the public internet. You can check for yourself on e.g. Shodan
A while ago I had a script that scraped that exact query for pictures. Here are some:

Also some gamers:

and, uh:

I also connected to some to see if they were legit and it seems like they were.
It could be fake of course, but I'd rather not find out so I avoided touching any buttons.

Either way, there's plenty of retardation when it comes to basic security.

 

[Joe Swanson]

I remember one of the normie tech channels (I believe it was LinusTechTips) was listing all the ways Linux was better then Windows/MacOS with one of the reasons being that printers always just work, makes me chuckle thinking about it now

 

[Milkshake Sniffer]

Having had 17 updates on a linux mint system (a clean version 22 install made about a day ago) in the last few hours at least 14 of which are cups related it looks like the patching is well under way.

 

[HahaYes]

The CVEs are:
CVE-2024-47076 (libcupsfilters)
CVE-2024-47175 (libppd)
CVE-2024-47176 (cups-browsed)
CVE-2021-47177 (cups-filters)

Has anyone confirmed the actual RCE yet?

It's from the new print job creation specifically after chaining together everything else in the first place

 

[The Connected Nose]

I take it back, it wasn't a 2-minute update. There were 11 cups-related patches, and they took me an entire 13 seconds to download and install.

 

[Alex Hogendorp]

https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/

https://archive.ph/wip/XU8Az

It's fucking NOTHING. Who the FUCK thought this was a 9.9 CVE? Heartbleed was fucking 7.5. What the actual fuck. Good lord. Absolutely no surprise that CUPS is a giant pile of shit. The bigger question is what kind of retard has CUPS exposed to the open internet?

I actually still remember heartbleed, people were making PSA's to update their information some decade ago.

 

[teriyakiburns]

It feels kind of surprising that I've never seen an alternative

Print is uniquely janky and retarded, so nobody wants to touch it.

 

[SphinxItOver]

Everything old is new again. Printer exploits will always be funny. Unsubscribe from T-series and sub to PewDiePie.

 

[D_Tractor]

Before any Windows/Apple users come by and drop the expected:

"Well well well, who's got the secure OS now?"
-

This affects you as well. 95% of webservers run on Linux. Linux is everywhere on the backend. If you see your IT guy stressed out at work, buy him a coffee.

Apple uses a forked version of CUPS. Does it affect them too?