At the Tianfu Cup PWN Contest (similar to Pwn2Own for Chinese security researchers) held in China, two successful hacks of Chrome and one hack of qemu-kvm in the Ubuntu environment were demonstrated, which made it possible to escape from the isolated environment and execute code on the side of the host system. The hacks were carried out using 0-day vulnerabilities that had not yet been patched. In addition, […]
Hello, I like to write something interesting and useful to the community on Mondays. Today I would like to tell a story about how an IT specialist lives in Penza after St. Petersburg, and why I don’t really want to return to the most beautiful city in Russia. Background From 2006 to 2018 I lived in St. Petersburg. First I studied, then I worked, then I traveled, then I worked again, and […]
A new release of QuiteRSS 0.19 has been introduced, a program for reading news feeds in RSS and Atom formats. QuiteRSS has features such as a built-in browser based on the WebKit engine, a flexible filter system, support for tags and categories, multiple viewing modes, an ad blocker, a file download manager, import and export in OPML format. The project code is supplied under the GPLv3 license. The release is timed to […]
QuiteRSS is a program for reading news feeds in RSS and Atom formats. The project code is available under the GPLv3 license. Among the features of the program: a built-in browser on the WebKit engine, a filter system, support for tags and categories, an ad blocker, a file download manager and much more. The release of QuiteRSS 0.19 is timed to coincide with the eighth anniversary of the project. What's new: transition to Qt 5.13, WebKit 602.1, […]
The 54th edition of the ranking of the 500 most high-performance computers in the world has been published. In the new issue, the top ten has not changed. In first place in the ranking, the Summit cluster was deployed by IBM at the Oak Ridge National Laboratory (USA). The cluster runs Red Hat Enterprise Linux and includes 2.4 million processor cores (using 22-core IBM Power9 22C 3.07GHz CPUs and NVIDIA Tesla […]
Racket, a Scheme-inspired language as well as an ecosystem for programming other languages, began the transition to Apache 2.0 or MIT dual licensing in 2017 and now, with version 7.5, virtually all of its components complete this process. The authors note two main reasons for this: It is not clear how to interpret the LGPL provisions on dynamic linking to Racket, where macros […]
The action-adventure Star Wars Jedi: Fallen Order (in Russian localization - “Star Wars. Jedi: Fallen Order”) is another new game that uses Denuvo anti-hacking technology. And, apparently, it was overcome in just three days. This means that hacker groups are capable of cracking the latest version of Denuvo in less than a week. Costs […]
Firefox for OpenBSD provides support for file system isolation using the unveil() system call. The necessary patches have already been accepted into upstream firefox and will be included in Firefox 72. Firefox on OpenBSD was previously secured using a pledge to restrict the access of each type of process (main, content and GPU) to system calls, now they will also be restricted […]
The developers of PlayerUnknown's Battlegrounds have decided to stop selling closed loot boxes for in-game currency. This is reported on the website of the game. The new rules will come into effect on December 18. All crates purchased by players with BP from this date onwards will be able to be opened without the use of keys. However, existing locked boxes will still require the purchase of a key. List […]
A corrective release of Chrome 78.0.3904.108 has been published, which fixes the 0-day vulnerabilities used to organize two successful hacks demonstrated at the Tianfu Cup competition. Issues (CVE-2019-13723, CVE-2019-13724) were present in the code for interacting with Bluetooth devices and allowed access to an already freed memory area (use-after-free) or to data beyond the bounds of the allocated buffer. In the new version, the context menu also […]
Publisher Private Division has announced the release date for Breaking Ground, a downloadable add-on for the space engineer simulator Kerbal Space Program, on PlayStation 4 and Xbox One. The DLC will be available on these platforms on December 5th. The purchase of the console version will cost $14,99. Recall that the premiere of the add-on on the PC took place on May 30 of this year, and on Steam the […]
The release of the project management system Calligra Plan 3.2 (formerly KPlato), which is part of the Calligra office suite developed by KDE developers, is presented. Calligra Plan allows you to coordinate the execution of tasks, determine dependencies between the work being carried out, plan execution time, track the status of different stages of development and manage the distribution of resources when developing large projects. Among the innovations it is noted: The ability to move in drag&drop mode and [...]
