Just woke up
This must be a nightmare, right?
Oracle has released a wide-ranging security update to address more than 300 CVE-listed vulnerabilities in its various enterprise products. The October release covers the gamut of Oracle's offerings, including its flagship Database, E-Business Suite, and Fusion Middleware packages. For Database, the update addresses a total of …
"I'm a director of the company so I insist on using the Administrator account!"
For everything. This is a genuine quote from a director of a genuine customer company.
The company went bust, a year ago this month. Obviously I hadn't let the account get in too deep, but it still cost me money.
There are two similarly named projects:
libssh: the one with the vulnerability, and libssh2 which so far doesn't seem to be affected.
Red Hat / Centos, at least, use libssh2.
Note also that it only affects servers, not clients. sftp servers seem to be the most likely to be vulnerable and exposed.
Hands up who hasn't yet applied the July updates? I have, but I burnt all my good will charging through the dev and test environments disrupting the business-value-delivering initiatives with my mundane "patching". Hey, I'm only keeping the core systems secure, trivial shit I know.
while the third, CVE-2018-7489, would require the user to have a Rapid Home Provisioning account to execute and is considered by far the least severe of the three.
And whenever Rapid Home Provisioning Accounts are for Rapid ElectronICQ Progress?
Would they be Vital for Life in Newly Established Services with Live Operational Virtual Environments ..... with Wacky Wild Western Desserts to Delight and Erotic Exotic Eastern Confections to Flavour with a Savouring and Servering.
Heap Powerful Medicine, Kemo Sabe. Cataclysmically COSMIC isn't a MisUnderEstimation.
* ..... or do you prefer a !BIGBOMBEBOOM ‽ Defunct and Obsolete Stock Firesales Crashing Systems and Markets ..... with Algo Processor Meltdowns/Crazy Trades :-)
Servicing and Servering to Equity Markets in Realisation of Future Virtualised AIdVenturing.
Are you invested and support enabled and enabling? Hi, Very Pleased to Meet and Feed and Seed with You Too.
:-)And don't be fooled to believe there is a real problem catching up with renegade angels .... Sympathy for the Devil
Forgiveness and Redemption are Divine and Define One Alongside a Very Few.