From 2e03f38815026a5cfdb1f0331203a213edaf3387 Mon Sep 17 00:00:00 2001 From: Xe Iaso Date: Wed, 14 Aug 2024 14:42:31 -0400 Subject: CVE-2024-38063 Signed-off-by: Xe Iaso --- .../no-way-to-prevent-this/CVE-2024-38063.md | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 lume/src/shitposts/no-way-to-prevent-this/CVE-2024-38063.md (limited to 'lume') diff --git a/lume/src/shitposts/no-way-to-prevent-this/CVE-2024-38063.md b/lume/src/shitposts/no-way-to-prevent-this/CVE-2024-38063.md new file mode 100644 index 0000000..f48fc16 --- /dev/null +++ b/lume/src/shitposts/no-way-to-prevent-this/CVE-2024-38063.md @@ -0,0 +1,20 @@ +--- +title: '"No way to prevent this" say users of only language where this regularly happens' +date: 2024-08-14 +series: "no-way-to-prevent-this" +type: blog +hero: + ai: "Photo by Andrea Piacquadio, source: Pexels" + file: sad-business-man + prompt: A forlorn business man resting his head on a brown wall next to a window. +--- + +In the hours following the release of [CVE-2024-38063](https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-38063) for the project [Microsoft Windows](https://microsoft.com), site reliability workers +and systems administrators scrambled to desperately rebuild and patch all their systems to fix a vulnerability where a specially crafted IPv6 packet can result in remote code execution.. This is due to the affected components being +written in C++, the only programming language where these vulnerabilities regularly happen. "This was a terrible tragedy, but sometimes +these things just happen and there's nothing anyone can do to stop them," said programmer Queen Myra Weissnat, echoing statements +expressed by hundreds of thousands of programmers who use the only language where 90% of the world's memory safety vulnerabilities have +occurred in the last 50 years, and whose projects are 20 times more likely to have security vulnerabilities. "It's a shame, but what can +we do? There really isn't anything we can do to prevent memory safety vulnerabilities from happening if the programmer doesn't want to +write their code in a robust manner." At press time, users of the only programming language in the world where these vulnerabilities +regularly happen once or twice per quarter for the last eight years were referring to themselves and their situation as "helpless." -- cgit v1.2.3