Deno 1.28 is released, a stand-alone JavaScript and TypeScript application execution framework that can be used to create server-side handlers. The platform is being developed by Ryan Dahl, creator of Node.js. Like Node.js, Deno uses the V8 JavaScript engine, which is also used in Chromium-based browsers. At the same time, Deno is not an offshoot […]
A vulnerability has been identified in Netgear devices that allows, without authentication, to achieve the execution of its code with root rights through manipulations in the external network on the side of the WAN interface. The vulnerability has been confirmed in the R6900P, R7000P, R7960P and R8000P wireless routers, as well as in network devices for deploying mesh networks MR60 and MS60. Netgear has already released a firmware update to fix the vulnerability. […]
The US National Security Agency published a report analyzing the risks of vulnerabilities caused by memory errors, such as accessing a memory area after it has been freed and buffer overruns. Organizations are encouraged to move away from programming languages such as C and C++, which leave memory management to the developer, wherever possible, in favor of languages that provide automatic […]
Barry Kauler, founder of the Puppy Linux project, has published an experimental EasyOS 4.5 distribution that combines Puppy Linux technologies with containerized isolation to run system components. The distribution kit is managed through a set of graphical configurators developed by the project. The size of the boot image is 825 MB. In the new release: The Linux kernel has been updated to version 5.15.78. In the kernel, when compiling, the settings for […]
The developers of the Thunderbird email client have introduced a new design for the scheduler calendar, which will be offered in the next major release of the project. Almost all elements of the calendar have been redesigned, including dialogs, pop-ups and tooltips. The design is optimized to increase the visibility of displaying loaded charts with a large number of events. Expanded options for adapting the interface to your preferences. In a summary view of events for the month […]
The fheroes2 0.9.21 project release is available, which recreates the Heroes of Might and Magic II game engine from scratch. The project code is written in C++ and distributed under the GPLv2 license. To run the game, game resource files are required, which can be obtained, for example, from the demo version of Heroes of Might and Magic II or from the original game. Main changes: Improved algorithms […]
Security audit company Kudelski Security has published Shufflecake, a toolkit that allows you to create hidden file systems that are spread over the available free space on existing partitions and are indistinguishable from random residual data. Sections are created in such a way that without knowing the access key, it is problematic to prove their existence even when conducting a forensic analysis. Utilities code (shufflecake-userland) and module […]
The open source video player MPV 0.35 was released, which in 2013 forked from the code base of the MPlayer2 project. In MPV, the focus is on developing new features and ensuring that innovations are continually ported from the MPlayer repositories without concern for maintaining compatibility with MPlayer. The MPV code is distributed under the LGPLv2.1+ license, some parts remain under the GPLv2, but the process of migrating to the LGPL is almost […]
Google has published the release of the Lyra 1.3 audio codec, aimed at achieving high voice quality in a limited amount of transmitted information. Speech quality at 3.2 kbps, 6 kbps, and 9.2 kbps bitrates using the Lyra codec roughly corresponds to 10 kbps, 13 kbps, and 14 kbps bit rates using the Opus codec. To solve the problem, in addition to the usual methods […]
A vulnerability has been identified in the xterm terminal emulator (CVE-2022-45063) that allows shell commands to be executed when certain escape sequences are processed in the terminal. For an attack in the simplest case, it is enough to display the contents of a specially designed file on the screen, for example, using the cat utility, or paste a line from the clipboard. printf "\e]50;i\$(touch /tmp/hack-like-its-1999)\a\e]50;?\a" > cve-2022-45063 cat cve-2022-45063 processing the escape sequence with […]
The Wa-tunnel toolkit has been published, allowing you to forward TCP traffic through another host using a tunnel running on top of the WhatsApp messenger. Such manipulations can be useful when you need to gain access to an external network from environments where only the messenger is available, or to save traffic when connecting to networks or providers that provide unlimited options for messenger traffic (for example, unlimited access to WhatsApp […]
An experimental release of the open implementation of WinAPI - Wine 7.21 has taken place. Since the release of version 7.20, 25 bug reports have been closed and 354 changes have been made. The most important changes: The OpenGL library has been switched to use the PE (Portable Executable) executable file format instead of ELF. Added support for multi-architecture builds in PE format. Preparations have been made to support the launch of 32-bit programs using […]
