Diag| Considering item [tag:pappp.net,2025-10-13:/2423200] "The Peach meme: On CRTs, pixels and signal quality (again)"

Diag| Considering item [tag:pappp.net,2025-10-10:/2422560] "Bringing Desktop Linux GUIs to Android: The Next Step in Graphical App Support"

Diag| Considering item [tag:pappp.net,2025-10-09:/2422303] "Show HN: I've built a tiny hand-held keyboard"

Diag| Considering item [tag:pappp.net,2025-10-09:/2422102] "Discord says 70k users may have had their government IDs leaked in breach"

Diag| Considering item [tag:pappp.net,2025-10-09:/2422107] "OpenAI, Nvidia fuel $1T AI market with web of circular deals"

Diag| Considering item [tag:pappp.net,2025-10-08:/2421957] "Ask Hackaday: Why is TTL 5 Volts?"

Diag| Considering item [tag:pappp.net,2025-10-08:/2421924] "The RSS feed reader landscape"

Diag| Considering item [tag:pappp.net,2025-10-08:/2421811] "Synology reverses policy banning third-party HDDs"

Diag| Considering item [tag:pappp.net,2025-10-07:/2421665] "Qualcomm gobbles up Arduino"

Diag| Considering item [tag:pappp.net,2025-10-07:/2421660] "Denmark Aims To Ban Social Media For Children Under 15, PM Says"

Diag| Considering item [tag:pappp.net,2025-10-06:/2421277] "Deloitte refunds Aussie gov after AI fabrications slip into $440K welfare report"

Diag| Considering item [tag:pappp.net,2025-10-05:/2421032] "Laptops create systems. Phones feed algorithms. The asymmetry determines power"

Diag| Considering item [tag:pappp.net,2025-10-03:/2420490] "I spent the day teaching seniors how to use an iPhone"

Diag| Considering item [tag:pappp.net,2025-10-03:/2420481] "Apple takes down ICE tracking apps after pressure from DOJ"

Diag| Considering item [tag:pappp.net,2025-10-02:/2420321] "Windows 7 marketshare jumps to nearly 10% as Windows 10 support is about to end"

Diag| Considering item [tag:pappp.net,2025-09-30:/2419628] "Charlie Javice sentenced to 7 years in prison for fraudulent $175M sale of Frank"

Diag| Considering item [tag:pappp.net,2025-09-29:/2419425] "EA will be a very different company under private ownership"

Diag| Considering item [tag:pappp.net,2025-09-29:/2419371] "F-Droid says Google’s new sideloading restrictions will kill the project"

Diag| Considering item [tag:pappp.net,2025-09-29:/2419197] "To digital natives, Microsoft's IT stack makes Google's look like a model of sanity"

Diag| Considering item [tag:pappp.net,2025-09-27:/2418901] "Update Notice of Centauri Series – ELEGOO Official"

Diag| Considering item [tag:pappp.net,2025-09-23:/2417784] "Benjamin Button reviews macOS"

Diag| Considering item [tag:pappp.net,2025-09-18:/2416403] "Nvidia, Intel to co-develop “multiple generations” of chips as part of $5 billion deal"

Diag| Considering item [tag:pappp.net,2025-09-16:/2415778] "Criminals broke into the system Google uses to share info with cops"

Diag| Considering item [tag:pappp.net,2025-09-16:/2415529] "Linux phones are more important now than ever"

Diag| Considering item [tag:pappp.net,2025-09-12:/2414684] "Jef Raskin's cul-de-sac and the quest for the humane computer"

Diag| Considering item [tag:pappp.net,2025-09-12:/2414711] "Chat Control faces blocking minority in the EU"

Diag| Considering item [tag:pappp.net,2025-09-11:/2414559] "Bolsonaro Convicted of Attempting a Coup in Brazil, Sentenced to 27 Years in Prison"

Diag| Considering item [tag:pappp.net,2025-09-09:/2413600] "Software packages with more than 2 billion weekly downloads hit in supply-chain attack"

Diag| Considering item [tag:pappp.net,2025-09-08:/2413456] "All clickwheel iPod games have now been preserved for posterity"

Diag| Considering item [tag:pappp.net,2025-09-07:/2413218] "The MacBook has a sensor that knows the exact angle of the screen hinge"

Diag| Considering item [tag:pappp.net,2025-09-04:/2412559] "Nvidia Dominates GPU Shipments With 94% Share"

Diag| Considering item [tag:pappp.net,2025-09-03:/2412311] "The worst possible antitrust outcome"

Diag| Considering item [tag:pappp.net,2025-09-03:/2412267] "Mis-issued certificates for 1.1.1.1 DNS service pose a threat to the Internet"

Diag| Considering item [tag:pappp.net,2025-09-02:/2412032] "Judge: Google can keep Chrome, must share search data with “qualified competitors”"

Diag| Considering item [tag:pappp.net,2025-09-02:/2411957] "This ultra-rare ’90s LaserDisc game console can finally be emulated on a PC"

Diag| Considering item [tag:pappp.net,2025-09-02:/2411847] "Imgur's community was in revolt"

Diag| Considering item [tag:pappp.net,2025-09-01:/2411633] "Intel Patents 'Software Defined Supercore'"

Diag| Considering item [tag:pappp.net,2025-08-26:/2410252] "Doge uploaded live copy of Social Security database to 'vulnerable' cloud server"

Diag| Considering item [tag:pappp.net,2025-08-26:/2410211] "We regret but have to temporary suspend the shipments to USA"

Diag| Considering item [tag:pappp.net,2025-08-26:/2410193] "Troubled USB Device? This Tool Can Help"

Diag| Considering item [tag:pappp.net,2025-08-26:/2410135] "The size of Adobe Reader installers through the years"

Diag| Considering item [tag:pappp.net,2025-08-25:/2409944] "Google will allow only apps from verified developers to be installed on Android"

Diag| Considering item [tag:pappp.net,2025-08-24:/2409578] "Picking an Old Operating System"

Diag| Considering item [tag:pappp.net,2025-08-22:/2409290] "US government takes 10 percent stake in Intel in exchange for money it was already on the hook for"

Diag| Considering item [tag:pappp.net,2025-08-22:/2409328] "Nitro: A tiny but flexible init system and process supervisor"

Diag| Considering item [tag:pappp.net,2025-08-21:/2408908] "James Dobson, Influential Leader of the Religious Right, Dies at 89"

Diag| Considering item [tag:pappp.net,2025-08-20:/2408610] "FDA warns public to throw out potentially radioactive shrimp"

Diag| Considering item [tag:pappp.net,2025-08-15:/2407469] "HTTP/1.1 must die: the desync endgame"

Diag| Considering item [tag:pappp.net,2025-08-15:/2407392] "Open hardware desktop 3D printing is dead – you just don’t know it yet"

Diag| Considering item [tag:pappp.net,2025-08-15:/2407386] "What kids told us about how to get them off their phones"

Diag| Considering item [tag:pappp.net,2025-08-14:/2407170] ""Privacy preserving age verification" is bullshit"

Diag| Considering item [tag:pappp.net,2025-08-12:/2406472] "Firefox’ new “AI” features cause  CPU spikes and battery drain"

Diag| Considering item [tag:pappp.net,2025-08-11:/2406239] "Reddit will block the Internet Archive"

Diag| Considering item [tag:pappp.net,2025-08-11:/2406191] "GitHub is no longer independent at Microsoft after CEO resignation"

Diag| Considering item [tag:pappp.net,2025-08-11:/2406033] "Vanishing from Hyundai’s data network"

Diag| Considering item [tag:pappp.net,2025-08-13:/2406677] "QNX: The Incredible 1.44M Demo"

Diag| Considering item [tag:pappp.net,2025-08-08:/2405403] "New executive order puts all grants under political control"

Diag| Considering item [tag:pappp.net,2025-08-07:/2405388] "Cursed Knowledge"

Diag| Considering item [tag:pappp.net,2025-08-05:/2404654] "Patch now: Millions of Dell PCs with Broadcom chips vulnerable to attack"

Diag| Considering item [tag:pappp.net,2025-08-05:/2404534] "Proxmox Virtual Environment 9.0 with Debian 13 released"

RegreSSHion: RCE in OpenSSH’s server, on glibc-based Linux systems | PAPPP's Rambling

RegreSSHion: RCE in OpenSSH’s server, on glibc-based Linux systems

Posted on 2024-07-01 by pappp

Source: Hacker News

Article note: Heh, the patches that added the built in block-on-repeated-attempt features into the logging path were also quietly patching a (very complicated to trigger) RCE related to signal handlers and logging because a few glibc functions hit by a signal in the timeout path aren't async safe.

Comments

This entry was posted in News. Bookmark the permalink.

RegreSSHion: RCE in OpenSSH’s server, on glibc-based Linux systems

Leave a Reply Cancel reply

Web Presence

Page Navigation

Meta

Recent Posts

Random Quote

Categories

License