An Anonymous Coward writes:
A 7-year-old critical remote code execution vulnerability has been discovered in Samba networking software that could allow a remote attacker to take control of an affected Linux and Unix machines.
[...] The newly discovered remote code execution vulnerability (CVE-2017-7494) affects all versions newer than Samba 3.5.0 that was released on March 1, 2010.
"All versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it," Samba wrote in an advisory published Wednesday.
(Score: 0) by Anonymous Coward on Saturday May 27 2017, @11:29PM
I'm on Mint and the Samba patch was in my updates 24/25 May. Linux is on top of it!
If this fault was in Windoesn't the TLA would exploit it for 7 years, then it wouls be wikiLeaked to the world and patched two months later, also known as "Next Tuesday". A week after that the patch would be found faulty too, rinse and repeat.