In contrast, I believe that Openstack is a steaming pile of impenetrable Python poo, especially its storage architecture. If this is indeed their platform then I am not at all surprised to hear that Github admins are now busy failing their files over manually.
People are welcome to risk their own systems in whatever way they wish, but posting random advice to the internet advocating that others do the same is not ok. BTW, your comment doesn't make any sense at all, do you always talk like that?
The one who thought nobody was vulnerable ("a tiny minority") without being able to factually support that belief, until an upstream developer weighed in, and who still is wrong to belief that it is ok for even a minority to risk their security needlessly, and advocate for others to follow that path. That would be you, apparently.
Which data storage sytem would that be? Brand and model. I want to know so that I can think badly of it, or possibly of the persons who configured it, but most probably the vendor.
3.0.5 is still a development branch, if you wait for that you will be waiting a long time. You need a security patch. Already landed in Debian/Sid, good luck with Windows.
I hope that you will soon also understand that you are also a hazard to security. It should be obvious that many applications depend on vlc and therefore live555, and that many users use these to access media remotely. The coward had a chance to think critically, possibly redeeming themselves for an obviously stupid comment, why should I be surprised that that was a complete fail. And why should I be surprised that some other coward hopes to defend their imagined duty to be clueless on the internet.
For buster/sid, this updates to versions 2018.10.17-1 and 2018.08.28a-1. Then check to see if these have the fix, I think they do but I have not verified yet.
This update takes less than 1 minute to do, there is not the slightest excuse for procrastinating.
scientific theories are never "proven" to be correct
Not so, theories are regularly proven to be correct, often by discovering the underlying mechanisms that give rise to the phenomena described by the theory. For example, Gregor Mendel theorized that genes come in pairs and that was later proven by direct observation.
when I am no longer a net benefit to the family, I want to go back to non-existence.
You know what? You're just saying that to avoid admitting your own selfishness. When it comes to the crunch you will opt for the expensive meds and procedures, anybody else's interest be damned. Seen too many of your ilk.
I hope that you understand that you have to pay insurance for your family, and self-destructive clowns like OP run up the cost of that, never mind your old-age costs, competing with barns full of burned out obese smokers on life support who never deserved to get that old, and only did so by paying with your insurance dollars.
the first gen mobile and APU parts were based on the 14nm Zen instead of 12nm Zen+
The 12nm node name surely counts as one of the most egregious terminology abuses in the process wars so far. It uses all the same dimensions as 14nm but tweaks some details for better clocks and power efficiency. It really really should be called 14nm+, but maybe they just felt a compelling need to distinguish it from Intel's unrelated 14nm. And 12nm is better than 14nm, right? And 12nm must be better than 14nm+, so that settles that. What we need to be clear on is, nm no longer means "nanometer", it means "node marketing"
Slashdot Mirror
Microsoft probably sent their advance team in years ago to soften them up like they did with Nokia.
Another possible clue:
I’m a developer on Openstack’s object storage system, and I believe that Openstack is uniquely positioned to achieve this vision.
In contrast, I believe that Openstack is a steaming pile of impenetrable Python poo, especially its storage architecture. If this is indeed their platform then I am not at all surprised to hear that Github admins are now busy failing their files over manually.
Good work for spotting and pointing out the original problem, much more useful than posting a random snipe to the internet
People are welcome to risk their own systems in whatever way they wish, but posting random advice to the internet advocating that others do the same is not ok. BTW, your comment doesn't make any sense at all, do you always talk like that?
So who's clueless on the internet?
The one who thought nobody was vulnerable ("a tiny minority") without being able to factually support that belief, until an upstream developer weighed in, and who still is wrong to belief that it is ok for even a minority to risk their security needlessly, and advocate for others to follow that path. That would be you, apparently.
A possible clue:
Moving to bare metal and federated storage on Rackspace has brought our average Rails response time to consistently under 100ms
But that post is ancient.
The storage system heard that it would soon be acquired by Microsoft and had a heart attack :)
Which data storage sytem would that be? Brand and model. I want to know so that I can think badly of it, or possibly of the persons who configured it, but most probably the vendor.
Gah, typoed that. Should be:
sudo apt update && sudo apt install liblivemedia62:amd64 liblivemedia64:amd64
Not sure which of those two libraries has the hole, maybe both.
Thanks for that.
Anything more than a few bytes is enough to own you.
3.0.5 is still a development branch, if you wait for that you will be waiting a long time. You need a security patch. Already landed in Debian/Sid, good luck with Windows.
I hope that you will soon also understand that you are also a hazard to security. It should be obvious that many applications depend on vlc and therefore live555, and that many users use these to access media remotely. The coward had a chance to think critically, possibly redeeming themselves for an obviously stupid comment, why should I be surprised that that was a complete fail. And why should I be surprised that some other coward hopes to defend their imagined duty to be clueless on the internet.
Debian status of this vulnerability
Looks like fixed in Sid (I'm ok!) but testing and stable are still vulnerable as of right now.
What makes you think that nobody streams media from the internet?
Almost nobody that uses VLC will actually be affected by this bug
[citation needed]
Debian users, do this right away:
sudo apt upgrade && sudo apt install liblivemedia62:amd64 liblivemedia64:amd64
For buster/sid, this updates to versions 2018.10.17-1 and 2018.08.28a-1. Then check to see if these have the fix, I think they do but I have not verified yet.
This update takes less than 1 minute to do, there is not the slightest excuse for procrastinating.
No theory has ever been proven correct
No random internet pounder could ever be trusted to tell you the truth.
scientific theories are never "proven" to be correct
Not so, theories are regularly proven to be correct, often by discovering the underlying mechanisms that give rise to the phenomena described by the theory. For example, Gregor Mendel theorized that genes come in pairs and that was later proven by direct observation.
Right, just like General Relatively broke. Oh wait.
The standard model is...a model, not a theory.
Ah, no, The Standard Model of particle physics is the theory describing three of the four known fundamental forces. Too bad you didn't make the slightest attempt to get a clue WTF you are talking about before farting out onto the internet.
when I am no longer a net benefit to the family, I want to go back to non-existence.
You know what? You're just saying that to avoid admitting your own selfishness. When it comes to the crunch you will opt for the expensive meds and procedures, anybody else's interest be damned. Seen too many of your ilk.
I hope that you understand that you have to pay insurance for your family, and self-destructive clowns like OP run up the cost of that, never mind your old-age costs, competing with barns full of burned out obese smokers on life support who never deserved to get that old, and only did so by paying with your insurance dollars.
neither Amazon nor Apple sell servers
They use plenty of servers in their data centers.
the first gen mobile and APU parts were based on the 14nm Zen instead of 12nm Zen+
The 12nm node name surely counts as one of the most egregious terminology abuses in the process wars so far. It uses all the same dimensions as 14nm but tweaks some details for better clocks and power efficiency. It really really should be called 14nm+, but maybe they just felt a compelling need to distinguish it from Intel's unrelated 14nm. And 12nm is better than 14nm, right? And 12nm must be better than 14nm+, so that settles that. What we need to be clear on is, nm no longer means "nanometer", it means "node marketing"