MistyHeads up: Bandcamp is doing a Bandcamp Friday-style event this Friday for charity. Bandcamp's cut of every sale is going to support musicians affected by the California wildfires. https://daily.bandcamp.com/features/bandcamp-fundraisers
@xoip
- 3 Followers
- 132 Following
- 106 Posts
Jonathan CorbetForbes is warning us that Android phones are under severe risk due to a kernel vulnerability:
https://www.forbes.com/sites/zakdoffman/2025/02/03/google-warns-all-android-users-your-phone-is-now-at-risk/
This comes from Google's Android security bulletin for February:
https://source.android.com/docs/security/bulletin/2025-02-01
...which informs us that "There are indications that CVE-2024-53104 may be under limited, targeted exploitation". The vulnerability in question, though, is CVE-2024-53104:
https://lwn.net/ml/all/2024120232-CVE-2024-53104-d781@gregkh
...which is in the uvcvideo camera driver. Either I'm missing something badly, or the only way to exploit this would be to plug a malicious camera device into the phone. I can see why they would want to fix this, but I'm not sure it's a red-alert situation for most of us?
https://www.forbes.com/sites/zakdoffman/2025/02/03/google-warns-all-android-users-your-phone-is-now-at-risk/
This comes from Google's Android security bulletin for February:
https://source.android.com/docs/security/bulletin/2025-02-01
...which informs us that "There are indications that CVE-2024-53104 may be under limited, targeted exploitation". The vulnerability in question, though, is CVE-2024-53104:
https://lwn.net/ml/all/2024120232-CVE-2024-53104-d781@gregkh
...which is in the uvcvideo camera driver. Either I'm missing something badly, or the only way to exploit this would be to plug a malicious camera device into the phone. I can see why they would want to fix this, but I'm not sure it's a red-alert situation for most of us?
GTKIt seems that a few people are being misinformed about the deprecation of the X11 backend, usually because they read screeds from well-known bad faith actors.
The X11 backend being deprecated mainly means that we're not going to spend time implementing new features, like dmabuf, graphics offloading, or Vulkan support. X11 support will still exist until GTK4 is EOL, which will happen once GTK *6* is released. We're talking about a 20 years horizon, at this point…
Erik Uden 🍑Interestingly, two days before Oracle deleted my account and all servers associated with it, I publicly criticized Oracle's CEO in a viral post for promising dystopian AI surveillance technology to his investors.
https://mastodon.de/@ErikUden/113879369270806353
What a weird coincidence.
Erik Uden 🍑 (@[email protected])
Day three of Trump's term and the largest push for surveillance capitalism yet has been made: **Project Stargate** will be a $500.000.000.000 (*500 billion USD*) data center used for running a multitude of AIs with the purpose of spying on you. Larry Ellison, the world's second richest man and CEO of Oracle, one of the main partners of Stargate, said: > “Citizens will be on their best behavior, because we're constantly recording and reporting everything that's going on [...]. We're using A.I. to monitor the video.” — Larry Ellison, CEO of Oracle on how the company's A.I. systems will be used for in the future [[Source: Business Insider](https://archive.ph/2Ck66)] This is who is in power now. This is the vision they have.
Liam @ GamingOnLinux 🐧🎮Debian Linux announce they will no longer post on X
“X evolved into a place where people we care about don't feel safe.”
The Debian Publicity Team will no longer post on X/Twitter. We took this decision since we feel X doesn't reflect Debian shared values as stated in our social contract, code of conduct and diversity statement. X evolved into a place where people we care about don't feel safe. You are very much invited to follow us on https://bits.debian.org , on https://micronews.debian.org/ , or any media as listed on https://wiki.debian.org/Teams/Publicity/otherSN #debian
The Debian Publicity Team will no longer post on X/Twitter. We took this decision since we feel X doesn't reflect Debian shared values as stated in our social contract, code of conduct and diversity statement. X evolved into a place where people we care about don't feel safe. You are very much invited to follow us on https://bits.debian.org , on https://micronews.debian.org/ , or any media as listed on https://wiki.debian.org/Teams/Publicity/otherSN #debian
Zentrum für Politische SchönheitTesla Gigafactory, Berlin - right now!
In cooperation with @ledbydonkeys.org
decio[related]
"A look at the recent rsync vulnerability"
👇
https://lwn.net/SubscriberLink/1005302/0eac0cf6f7cd7504/
DebianFixes for a critical rsync vulnerability (CVE-2024-12084) have been released for Stable/Bookworm, Testing and Unstable. Oldstable/Bullseye is not affected. Fixes for other lower severity CVEs have also been released in the same update and can all be tracked at https://security-tracker.debian.org/tracker/source-package/rsync. The fixed Stable version is 3.2.7-1+deb12u1 and the fixed Testing/Unstable version is 3.3.0+ds1-3
Freya / The Compiler#qutebrowser is 11 years old, almost on the minute! I'm celebrating by releasing v3.4.0: https://listi.jpberlin.de/pipermail/qutebrowser/2024-December/000960.html
Lucie / minutemy #38c3 community talk is scheduled on the 28th (day 2) at 16:40, stage HUFF https://cfp.cccv.de/38c3-community-stages/talk/A8BPKQ/
7 Years Later: Why And How To Make Portable Open Hardware Computers 38C3 Community Stages
After more than 7 years, a small team of hackers and designers in Berlin are about to release the third generation of their Open Hardware laptop family: MNT Reform Next. Here, Lukas "minute" Hartmann will discuss why we need Open Hardware computers, what we learned through trial, error and hardship of designing and hand-assembling over 1000 of them by hand, and how you can claw back some autonomy over your hardware from Big Computer.