Zum Inhalt der Seite gehen

Suche

Beiträge, die mit linux getaggt sind


5 Vulnerabilities found in Ubuntu's Needrestart.

That could allow a local attacker to gain root privileges without requiring user interaction. Needrestart is a utility that scans a system to determine the services that need to be restarted after applying shared library updates.

https://blog.qualys.com/vulnerabilities-threat-research/2024/11/19/qualys-tru-uncovers-five-local-privilege-escalation-vulnerabilities-in-needrestart

#linux #ubuntu #it #security #privacy #engineer #tech #media #news
Multiple decade-old security vulnerabilities have been disclosed in the needrestart package.

The vulnerabilities are believed to have existed since the introduction of interpreter support in needrestart 0.8, which was released on April 27, 2014.

"These needrestart exploits allow Local Privilege Escalation (LPE) which means that a local attacker is able to gain root privileges," Ubuntu said in an advisory, noting they have been addressed in version 3.8.

<https://ubuntu.com/blog/needrestart-local-privilege-escalation>

The 5 flaws are listed below:

• CVE-2024-48990 [CVSS score: 7.8] - A vulnerability that allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.
• CVE-2024-48991 [CVSS score: 7.8] - A vulnerability that allows local attackers to execute arbitrary code as root by winning a race condition & tricking needrestart into running their own, fake Python interpreter.
• CVE-2024-48992 [CVSS score: 7.8] - A vulnerability that allows local attackers to execute arbitrary code as root by tricking needrestart into running the Ruby interpreter with an attacker-controlled RUBYLIB environment variable.
• CVE-2024-11003 [CVSS score: 7.8] and CVE-2024-10224 [CVSS score: 5.3] - Two vulnerabilities that allows a local attacker to execute arbitrary shell commands as root by taking advantage of an issue in the libmodule-scandeps-perl package. (before version 1.36)


¿Sabían que contamos con una estación de #radio online?
Así es, aparte de hacer #podcast y artículos para el #blog, también transmitimos #musica y programas interesantes sobre #linux #softwarelibre #historia #filosofia #mitología #saludybienestar #misterios y mucho más.
Pásate a escuchar nuestra propuesta radial en https://mdtradiomx.neocities.org/ y
#daleplay


I find Linux virtualization stack confusing. KVM? ibvirt? QEMU? Xen? What does that even mean? So I wrote a post in an attempt at making sense of that all. Hope it clears things up, and let me know if I missed a mark somewhere.

https://mirekdlugosz.com/blog/2024/understanding-linux-virtualization-stack/

#linux #blog #kvm #QEMU #xen #virtualbox


Linus Torvalds removed all Russian and Belarusian contributors from #linux development team.

Russians forked the last version before getting banned and are modifying their own kernel now. #Russia was unaffected by the microsoft outage couple of months ago as they use their own kernels.

https://www.tomshardware.com/software/linux/linus-torvalds-kicked-the-russians-out-of-linux-now-theyre-creating-a-sovereign-linux-community-in-russia-ministry-of-digital-development-steps-in


Does anyone know how I can use a custom font in a grub2 theme without secure boot blocking it?

#grub #grub2 #linux


Hello Fedi friends!

I realize I haven't published any new #blog posts for #TheFutureIsFederated in 3 weeks (gasp).

I've been doing a lot of thinking, reading, learning #Linux on my #RaspberryPi5... and I'm now preparing a brand new blog post about the #Fediverse. I think it will be the most important thing I have ever written on the subject. I care about this A LOT and I hope it will be good and helpful.

In the meantime, you can read old posts and subscribe here: https://blog.elenarossini.com/tag/the-future-is-federated/


🌟 Unlock the power of environment variables in Linux! Our guide covers printenv, set, export, and alias with easy-to-follow examples. Perfect for beginners!

Explore now: https://www.spsanderson.com/steveondata/posts/2024-11-15/

#Blog #Programming #Linux #Coding



🛠️ Ready to simplify your Linux commands? Our latest post breaks down alias and other essential commands for beginners. Discover how to customize your terminal today!

Read more: https://www.spsanderson.com/steveondata/posts/2024-11-15/

#Blog #Coding #Programming #Linux #Tech



On my agenda today:
- set up my #RaspberryPi5 / install #Linux (Ubuntu MATE most likely)
- permanently delete my inactive 3 bird app accounts
- draft a new post for #TheFutureIsFederated about data sovereignty and my plans for the next 4 years
- finish reading #NeilPostman’s superb “Building a Bridge to the 18th century”
- chin up, be defiant and resist

ICYMI: this is the latest #blog I wrote on my personal site: “The rebellion will be federated” https://elenarossini.com/2024/11/the-rebellion-will-be-federated/

#FOSS #rebelalliance


For the next 24 hours, I will donate 1 flash drive to flash drives for freedom, an organization that smuggles outside information into North Korea for every follower I get, up to 400 followers. (I’m not rich and that’s about what I can fit into my budget)
#northkorea #flashdrivesforfreedom #tech #linux #media #follow #boost #social #mastodon #peace #help #donate #cybersecurity #trending #freedom


Slackware is a Linux distribution created by Patrick Volkerding in Jul 1993. It is the oldest distro still in existence. However, someone was dissatisfied with Slackware and created another distro a month later, in August 1993. This was Debian, the second oldest distro, founded by Ian Murdock. Both of these distros are still maintained, and Debian is often known as the "mother distro" because it has spawned many more distributions. #Linux #OpenSource #history


A Christmas Strike

Instead of giving unnecessary gifts this year, we give loved ones home-made Christmas cards:

“This year, I’m giving you a gift of democracy. This card represents a purchase not made, money that #billionaires cannot use against civilisation. I hope this is a gift that you shall be able to use in the future.”

or donate on their behalf to #opensource & #linux projects — things we actually need.

https://activersity.org/opinion/christmas-strike

#christmasstrike
A Christmas card with the slogan "A Gift of Democracy"


#Linux and #Windows users with experience with #VirtualMachines, I need help. I've tried to install #ArchLinux 3 times now. The first time, I got a permission denied error because I chose the loopback device, not the #VMWare one. The second and third time, I did everything right but got an error saying the device path was not set. Does anyone know what might cause this?
#tech #technology #techProblems #techSupport


🐧 New to Linux? Dive into the world of processes with our beginner's guide! Learn essential commands like ps, top, jobs, and bg to manage your system efficiently.

Check it out here: https://www.spsanderson.com/steveondata/posts/2024-11-08/

#Programming #Linux #TechTips #CLI #Blog

🚀 Ready to boost your Linux skills? Our latest post breaks down key process management commands f



Wrote a little post about why I am not writing about Linux anymore, or at least why it s hard for me to do it.

https://writer13.neocities.org/linux/why-its-hard-for-me-to-write-about-linux.html

I am not tired of Linux, but simple fallen into the background. Will not stopping posting about it here (not just because of the Foss part) if I find interesting or useful stuff.

#Linux #tech #blog


You know what I like about #Linux?

You use it, it sits in the background, and you forget it's there without all the whinging and pop ups and forced-something-or-other you get from other brands of operating systems.


I like to know whether linux can still be branded free software by banning participation from people of specific ethnicity/nationality/geography?

Free to drink beer but not free to brewing it if you are a "xxyyzz" person?

1st they came for the Jews, then they came for the commies, then they came for the gypsies, but I was still drinking FREE beer.

@fsf
#Foss #Russia #Linux #BSD #Gnu


Looking for a #Linux distro that meets your needs? 🌐 Head to get.opensuse.org for a #Leap, #Tumbleweed & #MicroOS options! Whether you’re seeking stability or the latest in innovation, #openSUSE has you covered. 🦎 #UpgradetoFreedom! #EndofWindows10


When on the internet, all I want to do is read text, see images, and watch videos. That tech existed 20 years ago. All commercial #webdevelopment since then has intentionally had the goal of making that harder. It has accomplished little else other than providing the ability to order things.

#Capitalism did not create the internet (c.f. ARPANET) and it is seemingly incapable of improving it. I'm not sure how it got to be in charge.

Humans, rise

#opensource #linux #fediverse


#zotero - the free reference manager - now supports #epub in the beta 🤯

Stable and beta available via PPA https://github.com/retorquere/zotero-deb

#linux #research


Tips for dealing with different timezones?

Every time I plan on an event in a different timezone I'm confused how to put it in my calendar.

#linux #thunderbird #gnome


Why is Ubuntu used so much in the scientific field?
https://www.reddit.com/r/Ubuntu/comments/19cb7nh/why_is_ubuntu_used_so_much_in_the_scientific_field/
Spoiler: Cause I have to say... there's zero reasons to use windows on science, industry, technology, production, military... or any other field that takes it serious.
#foss #linux #ubuntu #fedora #redhat #windows #science #compare


just got the #passkey demo on https://www.passkeys.io/ working on #linux
- distro: pop OS ("Ubuntu")
- browser: #firefox 120.0.1
- seurity key: #yubikey 5 NFC

'just worked' after setting a #FIDO2 PIN via YubiKey Manager https://support.yubico.com/hc/en-us/articles/360016649039-Enabling-the-Yubico-PPA-on-Ubuntu#01H30DBXGX5RDD4AM7M815GAA3


Trying to debug stuttering/freezing on #popos #linux

Can someone confirm that all #dmesg output is available in #journalctl ?

Are there any other logs I should be looking at, and if yes how?


When buying a printer it used to be important to check that it works with well with a GNU/Linux system. According to https://wiki.debian.org/SystemPrinting , printers made after 2014 mostly work without problems.

What about printer/scanner devices? It appears they mostly work fine, according to https://wiki.debian.org/CUPSQuickPrintQueues#mfd

Does anyone have experience, good or bad, with setting up printer/scanners on GNU/Linux, especially #Debian?

#Linux #scanner #printer #MFD


Who can recommend me a german-english dictionary app that:

- works on #linux and/or #android
- is #floss
- doesn't need internet connection
- doesn't use electron
- has noun genders
- has verb conjugations


#Gnu #Linux
Para que lo tengas presente esta es la base del Software libre.
Sus 4 Libertades
Base del Software libre
 Las 4 libertades


Basics Tips Commands

#unix #linux #bash #tips #terminal #commands + #vim #emacs #nano #shortcut


#Lifehack: buy Linux-compatible equipment, even if you are not running #linux, because

1. The device adheres to open standards without tricks or drivers. It is portable. This is the gold standard for plug-and-play.

2. If a driver is conceptually necessary, see if a linux version exists. If yes,
it means that someone loved the device enough to do the work for free.

Follow the love, my friend.


Inhaltswarnung: Linux question KDE


I am looking for an #ebook #eink reader device.

Requirements:
- #foss operating system and apps
- supported (ideally, mainline) #linux kernel
- receiving updates

Any suggestion?

#askFedi


one office computer keeps freezing when it runs out of memory. it starts to swap and it becomes unresponsive. i suspect that swap file is much smaller then ram size. there's no other way than to hard reset.

what are steps to make sure this doesn't happen ever again?

:boost_anim_sleeping:

#linux #SysAdmin #linuxMint #MateDesktop


Inhaltswarnung: :boosts_ok_gay:​Help with Linux Screenreaders