this post was submitted on 18 Mar 2024
94 points (97.0% liked)

Games

16796 readers
850 users here now

Video game news oriented community. No NanoUFO is not a bot :)

Posts.

  1. News oriented content (general reviews, previews or retrospectives allowed).
  2. Broad discussion posts (preferably not only about a specific game).
  3. No humor/memes etc..
  4. No affiliate links
  5. No advertising.
  6. No clickbait, editorialized, sensational titles. State the game in question in the title. No all caps.
  7. No self promotion.
  8. No duplicate posts, newer post will be deleted unless there is more discussion in one of the posts.
  9. No politics.

Comments.

  1. No personal attacks.
  2. Obey instance rules.
  3. No low effort comments(one or two words, emoji etc..)
  4. Please use spoiler tags for spoilers.

My goal is just to have a community where people can go and see what new game news is out for the day and comment on it.

Other communities:

Beehaw.org gaming

Lemmy.ml gaming

lemmy.ca pcgaming

founded 1 year ago
MODERATORS
 

you are viewing a single comment's thread
view the rest of the comments
[–] CrypticCoffee@lemmy.ml 8 points 8 months ago (1 children)

So if it isn't a RCE vulnerability, what vulnerability is it?

[–] khannie@lemmy.world 17 points 8 months ago (2 children)

Their wording is actually quite deliberate. They say there isn't one being exploited, but they do not explicitly say that there isn't a RCE vulnerability.

It kinda stinks of ass coverage.

"I did not have sexual relations with that woman"

[–] Maalus@lemmy.world 7 points 8 months ago

It stinks of lawyers checking the press release. They can't say "there is none" in the offchance that someone, sometime finds one. Then clients could point to this press release saying "SEE, YOU TOLD US THERE WAS NONE AND 25 YEARS LATER WE FOUND ONE". I bet they are telling the truth, just ran through a lawyer and PR team.

[–] CrypticCoffee@lemmy.ml 4 points 8 months ago

Yeah, it stood out to me.

It's always in what they don't say.

If they say it's not a RCE vulnerability, it could still be a privilege escalation vulnerability etc. They avoided saying their software isn't being exploited or "we have seen no evidence our software has been compromised", or "there is no clear signs...".

Which gives a little wriggle room.