Grokstar.Dev

CategorySecurity

Quick Update on polkit/pwnkit

By Jerm
In Security, Snipe-IT Hosted, Systems
1 Min read
Q

The internet is alight this week with news of a widespread vulnerability in the Linux “policy kit” framework, specifically a root compromise via the pkexec program, designated CVE-2021-4034. Most of our systems do not fall under this advisory, and the ones that do have been fully patched. Of note, our Snipe-IT hosting systems were completely unaffected by this advisory.As always, we...

Read onRead later

Quick update on Log4j

By A. Gianotto
In Security, Snipe-IT Hosted
1 Min read
Q

Having received multiple inquiries from customers about how (or whether) we are impacted by the recently announced log4j “log4shell” vulnerability, we felt it prudent to update all of our customers (and open source users) en-masse. The short answer, and good news for all of us, is that we are not impacted at all, as we don’t use log4j, or any Java, in any of our systems. This includes both...

Read onRead later
Grokstar.Dev

Snipe-IT at Laracon

Open Source in Business Interview

Snipe-IT at Longhorn PHP