Page 1 of 1
Dirty Pipe vulnerability
Posted: 16 Mar 2022, 00:09
by Charlie_Croker
How vulnerable are TM devices?
Explained here
https://www.youtube.com/watch?v=bXMbDDAMfbg
Re: Dirty Pipe vulnerability
Posted: 16 Mar 2022, 11:52
by TMSupport
Thank you for your feedback, we will follow up on the vulnerability.
Re: Dirty Pipe vulnerability
Posted: 17 Mar 2022, 01:50
by Charlie_Croker
Thank you.
Updated to show what users need to know
https://www.youtube.com/watch?v=bXMbDDAMfbg
Re: Dirty Pipe vulnerability
Posted: 17 Mar 2022, 03:29
by crisisacting
Dirty Pipe targets Linux kernel 5.8 & newer.; Terra-Master is currently using 4.1× on TOS 4.2.×, so it likely is not as vulnerable to this particular exploit.
TMSupport wrote: ↑16 Mar 2022, 11:52
Thank you for your feedback, we will follow up on the vulnerability.
Upon which kernel is TOS 5 beta currently and the final release expected to be based?
Re: Dirty Pipe vulnerability
Posted: 17 Mar 2022, 17:43
by TMSupport
Based on Linux Kernel 4.19.
Re: Dirty Pipe vulnerability
Posted: 17 Mar 2022, 18:16
by Saijin_Naib
This really needs to be worked on. There are inumerable fixes to not only BTRFS, but also EXT4, in the 5.10.x LTS branch that we would benefit from, not to mention KSMBD/CIFSD which should make Windows SMB sharing more resource efficient and faster.