A critical Fluent Bit vulnerability that can be exploited in denial-of-service and remote code execution attacks impacts all major cloud providers and many technology giants.
I don’t know much about this stuff, but thinking of all the work drm games have gone through to prevent piracy, is it possible to do something with these highly popular dependencies so each user gets a sort of differently obfuscated version or something so that finding a vulnerability in one distribution doesn’t give you immediate access to all of them, so that it isn’t such a valuable target in the first place and damage can be limited? There’s going to be no end to this kind of attack as long as you have a single piece of software embedded in thousands of giant systems.
related to: https://sh.itjust.works/post/19619469
