Re: This vulnerability
Well, the old crap that you don't need anti-virus stuff and what not on a GNU/Linux system because it isn't MS Windows becomes real.
But it isn't. I don't run all that crap, nor my wife, nor her sister - we all trundle along happily (me on Slack, the girls on Ubuntu).
Most (all) of the dodgy stuff found in the Linux kernel needs either:
a) access to the physical system as root.
b) a third party process that is dodgy that a normal user wouldn't use/have anyway and get made to do dodgy things as root that no user is running anyway (this was sorted out years ago on *nix).
c) be an extremely intelligent coder that knows the kernel innards inside out but impossible to deploy in the real world.
One more point. These things only come out as the code can be audited and analysed, by anyone, and anything. In the real world, if it was closed source, I doubt this would have ever been found (AKA MS Windows world, and we know what happens when their bugs get found - but herein lies the difference - Linux kernel code is at least audited by the pack - who audits MS et al's code?).
Biting the hand that feeds IT
