On 9-1-2018 11:25, Sergey Mereutsa wrote:
Hi!
Just for your information - if this is your own dedicated server and you
do NOT run untrusted code on it (which can potentially steal your data
and send to someone) - you can safely disable this patch.
Just because you do not defend yourself from yourself :)
Both vulnerabilities are LOCAL :)
And that is just plain bad advice, it can be exploited by any code
running local on your machine. So anything on that machine that could
have a remote code execution vulnerability, or just a plain malicious
update, could then exploit it.
Mark
--
Mark Rotteveel
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
