"Am I affected by the bug?" is misleading #2
Labels
Comments
Karunamon
added a commit
to Karunamon/dirtycow.github.io
that referenced
this issue
Oct 20, 2016
|
Just tested and confirmed @glasser's last parenthetical remark. The "Am I affected by the bug?" section fails to account for systems running the fixed 4.8.4 kernel. |
|
I presumed that the page is static. It doesn't look dynamic. |
|
@daveloyall That part is actually a JavaScript snippet which looks for "Android" or "Linux" in the user agent: https://github.com/dirtycow/dirtycow.github.io/blob/master/index.html#L64-L65 |
# for free
to join this conversation on GitHub.
Already have an account?
# to comment
I went to this site on my Mac and saw:
When I read that, I interpreted this as meaning: This may be a security hole, but it's not a huge deal; we're just making a funny page for it for the hell of it. You don't have to worry about any Linux servers you maintain.
I did not interpret it as meaning "The particular web browser you're using to access this page runs on a system that isn't affected by the bug."
I'd suggest being more clear. (Plus, it doesn't actually detect whether you're running a fixed kernel or not, so even if you understand that the text is dynamic, it's not that helpful.)
The text was updated successfully, but these errors were encountered: