In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote attacker to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DHCP options.
WordPress 4.9.4 - DoS vulnerability from 4.9.228/02/2018
2.4 years ago.
#Op Black Friday23/11/2018
The big day is here.