Re: [PLUG] Government warns of critical Linux zero day, this is from yesterday

[Chad Waters via plug <plug@lists.phillylinux.org>]

Its in the KEV (known exploited vulnerability) catalog, which you should prioritize if you're in vuln management.

https://www.cisa.gov/known-exploited-vulnerabilities-catalog

The write ups say its mostly exploited via USB on Android devices.

On Friday, February 7th, 2025 at 3:59 PM, Frank via plug <plug@lists.phillylinux.org> wrote:

According to this page, it looks like this bug only effects Linux kernel versions 2.6.26 through 4.19.324.

https://www.cve.org/CVERecord?id=CVE-2024-53104

- Frank

On 2/7/25 3:49 PM, Michael Lazin via plug wrote:

https://www.forbes.com/sites/daveywinder/2025/02/06/critical-linux-0-day-attack-warning-us-government-says-act-now/

Michael Lazin

.. τὸ γὰρ αὐτὸ νοεῖν ἐστίν τε καὶ εἶναι.

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug