A critical unauthenticated Remote Code Execution (RCE) vulnerability has been discovered, impacting all GNU/Linux systems.
As per agreements with developers, the flaw, which has existed for over a decade, will be fully disclosed in less than two weeks.
Despite the severity of the issue, no Common Vulnerabilities and Exposures (CVE) identifiers have been assigned yet, although experts suggest there should be at least three to six.
https://cybersecuritynews.com/critical- ... -rce-flaw/