Summary

The video discusses recent changes in the Linux kernel maintenance team, where several maintainers, particularly those affiliated with Russia, were removed due to compliance with U.S. sanctions. It also highlights Apple’s new bug bounty program for their Private Cloud Compute initiative and a significant CVE affecting the 40net Manager software.

Key Points

• An email from Serge SE announced his removal from the Linux maintainers list along with others, citing compliance requirements.
• The Linux kernel maintainers list is critical for developers to send patches and code but is distinct from a contributor credit list.
• Compliance with U.S. OFAC sanctions is the reason behind the removals, impacting collaboration with certain entities.
• Apple launched a new bug bounty program for their Private Cloud Compute with payouts ranging up to million for discovering critical vulnerabilities.
• A new CVE, identified as CVE-2024-4757 or “40 jump,” has been confirmed to impact the 40net Manager, affecting over 50 servers.
• Threat actors have exploited the CVE, but no malicious payloads or significant data releases have been observed yet.
• Viewers are encouraged to support the show via Patreon and participate in upcoming live streams or discussions about potential celebrations.

Youtube Video: https://www.youtube.com/watch?v=hGEi08D_hjg
Youtube Channel: Hak5
Video Published: 2024-10-30T17:22:06+00:00