Linux

2027 readers

1 users here now

Everything about Linux

RULES

Be nice to each other.
No memes or pictures of Linux in the wild.

founded 2 years ago

MODERATORS

Fryboyter@discuss.tchncs.de

Bugs Found in sudo (www.linux-magazine.com)

submitted 3 weeks ago by schnurrito@discuss.tchncs.de to c/linux@discuss.tchncs.de

2 comments fedilink hide all child comments

top 2 comments

sorted by: hot top controversial new old

[–] lurch@sh.itjust.works 5 points 3 weeks ago (1 children)

AFAIK they are already patched, because the company I work for has already applied an Ubuntu update on various hosts to address this. (I saw the ticket being closed.)

[–] LeFrog@discuss.tchncs.de 5 points 3 weeks ago* (last edited 3 weeks ago)

I think this is the regular modus operandi in these days: CVD

In computer security, coordinated vulnerability disclosure (CVD, sometimes known as responsible disclosure) is a vulnerability disclosure model in which a vulnerability or an issue is disclosed to the public only after the responsible parties have been allowed sufficient time to patch or remedy the vulnerability or issue.

So the devs get enough time to prepare a fix before the public gets informed that they should update their software.