![](/static/253f0d9b/assets/icons/icon-96x96.png)
![](https://links.hackliberty.org/pictrs/image/58ecd031-bb86-4271-8b52-436e20a50148.webp)
An RCE on openssh is insanenly dangerous, unless there is some additional context… This CVE only got an 8.1 in score (what redhad and ubuntu showed at least), which I would say is really low openssh RCE attack. Reading the original investigation, they needed about 10k attempts to trigger a timeout to make it work. Due to it being a timeout 10k attempts took somewhere between 3 hours and like a week (depending an version). I suppose the complexity and average time it takes to carry out the attack gave it such a low score.
Have to watch this later because of the surprising title. The current governemnt declared they would abandon some climate goals and hope that this strategy would help long term climate goals in the future, as by magic or something.