[情报] Remote Code Execution in Alpine Linux CMJ0121 PTT批踢踢实业坊

[情报] Remote Code Execution in Alpine Linux

楼主: CMJ0121 (请多指教!!) 2018-09-14 14:36:08

https://justi.cz/security/2018/09/13/alpine-apk-rce.html
If you use Alpine Linux in a production environment, you should
1. rebuild your images and
2. consider donating what you can to the developers.
It seems like apk has one main developer who fixed this bug in less than a week.
The lead maintainer of Alpine cut a new release shortly thereafter.
简单来说作者发现了一个 Alpine Linux 的 RCE 漏洞
顺便抱怨一下 Alpine Linux 使用的公司很多但是 apk 的 maintainer 只有一个人
各大公司应该要多多 donate 开发者

继续阅读

Fw: [新闻] 苹果Mac防毒软件被爆偷传资料到中国遭下CMJ0121 [问题] 饭店的资安管理dc91 [闲聊] 网域搜寻引擎 https://dnstable.com/CMJ0121 Re: [闲聊] 2018-M03 MITM (短篇)CMJ0121 [闲聊] 看电影学资安-气象战GeostormAIRY0812 Fw: [公告] 8/4 停机公告CMJ0121 [情报] Hacknet限免下载(转自巴哈姆特skycat2216 [闲聊] 看电影学资安-CSI Cyber S01E10AIRY0812 [情报] ESLint compromisedCMJ0121 Fw: [疑惑] iPas经济部证照cute18943