This isn't a binary answer, no matter how much you try to cast it as one.
Software exploits are found regularly. But this is different, with the fact that Ubuntu is peddling knowingly vulnerable software, and then with the implicit threat of "Sure'd be ashame if you were hacked by our software we know is vulnerable... cause you didn't pay us for the fix".
I don't know the "best" course of action that applies everywhere. In some applications, you take the chance until the fix is out. Others, you take it down. And in others, you throw on extra detections and remediations to impede the attack. But you know this - you just wanted to get your one-liner quip in.
Ubuntu put crap in the MOTD. They could have just as easily made a RSS feed, and attach it to the security patches, and alert users of impending "bad stuff down the pipeline". But instead, they just SNAPify and shove more garbageware and terrible decisions down the pipeline. Basically, Ubuntu is the next case of Cory Doctorow's "enshittification" of software and goods.
Software exploits are found regularly. But this is different, with the fact that Ubuntu is peddling knowingly vulnerable software, and then with the implicit threat of "Sure'd be ashame if you were hacked by our software we know is vulnerable... cause you didn't pay us for the fix".
I don't know the "best" course of action that applies everywhere. In some applications, you take the chance until the fix is out. Others, you take it down. And in others, you throw on extra detections and remediations to impede the attack. But you know this - you just wanted to get your one-liner quip in.
Ubuntu put crap in the MOTD. They could have just as easily made a RSS feed, and attach it to the security patches, and alert users of impending "bad stuff down the pipeline". But instead, they just SNAPify and shove more garbageware and terrible decisions down the pipeline. Basically, Ubuntu is the next case of Cory Doctorow's "enshittification" of software and goods.