Browsing tag
Multiple critical security flaws have been disclosed in the Judge0 open-source online code execution system that could be exploited to obtain code execution on the target system. The three flaws, all critical in nature, allow an “adversary with sufficient access to perform a sandbox escape and obtain root permissions on the host machine,” Australian cybersecurity […]
“Test files” associated with the XZ Utils backdoor have made their way to a Rust crate known as liblzma-sys, new findings from Phylum reveal. liblzma-sys, which has been downloaded over 21,000 times to date, provides Rust developers with bindings to the liblzma implementation, an underlying library that is part of the XZ Utils data compression […]
Threat hunters have identified a suspicious package in the NuGet package manager that’s likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing. The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded 2,999 […]
Two critical security flaws discovered in the open-source CasaOS personal cloud software could be successfully exploited by attackers to achieve arbitrary code execution and take over susceptible systems. The vulnerabilities, tracked as CVE-2023-37265 and CVE-2023-37266, both carry a CVSS score of 9.8 out of a maximum of 10. Sonar security researcher Thomas Chauchefoin, who discovered […]
In what’s a continuing assault on the open source ecosystem, over 15,000 spam packages have flooded the npm repository in an attempt to distribute phishing links. “The packages were created using automated processes, with project descriptions and auto-generated names that closely resembled one another,” Checkmarx researcher Yehuda Gelb said in a Tuesday report. “The attackers […]
A version of an open source ransomware toolkit called Cryptonite has been observed in the wild with wiper capabilities due to its “weak architecture and programming.” Cryptonite, unlike other ransomware strains, is not available for sale on the cybercriminal underground, and was instead offered for free by an actor named CYBERDEVILZ until recently through a […]
Google on Thursday announced the creation of a new “Open Source Maintenance Crew” to focus on bolstering the security of critical open source projects. Additionally, the tech giant pointed out Open Source Insights as a tool for analyzing packages and their dependency graphs, using it to determine “whether a vulnerability in a dependency might affect […]
Cybersecurity researchers on Tuesday disclosed nine security vulnerabilities affecting three open-source projects — EspoCRM, Pimcore, and Akaunting — that are widely used by several small to medium businesses and, if successfully exploited, could provide a pathway to more sophisticated attacks. All the security flaws in question, which impact EspoCRM v6.1.6, Pimcore Customer Data Framework v3.0.0, […]
Like every year, GitHub has released its annual Octoverse 2019 report where it highlights the major changes and trends in the developer community. As far as programming languages are concerned, Python has outranked Java as the second most popular language on GitHub. Meanwhile, Dart was named the fastest-growing programming language on the platform. Top 10 […]
After months of development work, Canonical has officially released Ubuntu 19.10 Eoan Ermine. This release includes many new features, including the long-overdue ZFS file system. In its official release, Canonical said that Ubuntu 19.10 focuses on empowering the developers in fast-growing fields like AI, ML, edge computing, etc. Since the first Ubuntu release arrived on […]
Oracle Autonomous Linux OS has been announced to simplify cloud computing needs for server-side computers. It is the world’s first autonomous operating system and comes with Oracle OS management services. Oracle Autonomous Linux OS will mainly be used as a server-side solution on an enterprise scale. This Linux OS will provide a great deal of […]
After 8 release candidates, Linus Torvalds has finally released Linux Kernel 5.3. It is a major upgrade that brings many new features in terms of better hardware support, changes specific to Arm architecture and a couple of bug fixes. The extra release candidate RC8, as Torvalds says, was because of his busy travel schedule. Nonetheless, […]
A new strain of ransomware named Lilocked or Lilu has affected thousands of Linux-based servers all over the world. The ransomware started infecting servers back in mid-July but in the last two weeks, the attacks have become more frequent. The very first case of Lilocked ransomware came to light when a user uploaded a ransomware […]
Just earlier this year in July, we gave you the latest update on the much-anticipated Libre 5 Linux smartphone that has been under development for quite some time. Back then, Purism announced the final specifications of its open source, Linux-based smartphone. Powered by a 1.5GHz i.MX8M Quad-Core processor, the smartphone will ship with 3GB RAM […]
So you have had an Android device since forever and lately you have been starting to hate the UI. Now what? Well, say hello to the world of custom ROMs. Be it due to the severely delayed updates from OEMs or lack thereof, the most popular form of a workaround for Android users has always […]
We’ve previously covered System76 and their Linux loving laptops. But there are several other brands around that put Linux first. Star Labs is one of them and they’ve provided a demo unit of their Labtop (yes, Labtop). A premium laptop with fairly boastful specs. Star Labs Labtop In case you missed it, we covered ZorinOS […]
With each passing year, the Linux desktops are becoming more complete than ever. Multiple Linux distros are now known to offer a much better gaming experience and high-definition display performance. Pop!_OS, Manjaro, and Zorin OS are some of the notable examples. Over the course of last decade, Linux Mint has been able to establish itself […]
Zorin OS is a different offering in a large pool of competition. Zorin isn’t groundbreaking but does manage to provide some features that are fairly unique. Zorin is intended to be a friendlier distribution and aims to please newcomers to Linux. While it has much to offer, it does stray from the typical Linux modus […]
The Raspberry Pi Foundation recently announced Raspberry Pi 4, its latest powerful mini-computer with a USB type-C port. It was the first Raspberry Pi SBC with a USB type-C port and the foundation has today admitted that the port has a faulty design. The flaw was revealed by Tyler Ward, a blogger who posts about […]
As a part of the ongoing Ubuntu-Steam spectacle, Valve has published a new update on their website. The Steam-maker company has reaffirmed its plans to continue to support Linux gamers and work with leading Linux distributions that are known to be popular among gamers. Starting with Ubuntu, Valve has confirmed that it will continue to […]
As a result of constant feedback from the open source community — specifically gamers, WINE users, and Ubuntu Studio users — Canonical has decided to change its plans regarding ditching the 32-bit i386 packages for Ubuntu 19.10 and 20.04 LTS. For those who don’t know, last week, Canonical announced that it’s going to completely abandon […]