david

Copy-Fail? More like Copy-Fixed. 🛑 At @DECIX , our customers depend on our availability and integrity. So when the Linux "Copy-Fail" vulnerability popped up, we took it super seriously and patched things up immediately. But our engineers don't just patch; they innovate. 🧠 During the mitigation process, one of our brilliant system engineers identified a completely alternative way to block the vulnerability using ftrace. Because it’s been supported in the kernel since 2013, it’s an incredibly accessible solution for the broader community. We love a clever fix. Check out the GitHub repo below, try it yourself, and hit us with your feedback! 👉 github.com/philfry/cve-20…

@affanzbasalamah @lwastuargo Alhamdulillah..., manjur jos gandos bang...

@pnyet @lwastuargo Alhamdulillah dibantu kang Elon, limit Claude dinaikkan: x.com/claudeai/statu…

Akun kelima aing barusan ngisi kemaren 😭😭 Ini Claude kenapa sih kok rasanya cepet banget abisnya

@affanzbasalamah @lwastuargo Limit seminggu habis 2 hari 😴 😴 😴

@lwastuargo Mas Gogo dgn akun Claude sultan sekian banyak aja mengeluh habis, bagaimana dengan kami yg cuma pakai Claude UMKM gini? Sampai prei kerja dulu nunggu limit reset besok jam 3 pagi.

‼️ cPanelSniper: CVE-2026-41940 - cPanel & WHM Authentication Bypass via Session-File CRLF Injection GitHub: github.com/ynsmroztas/cPa… CVE-2026-41940 - cPanel & WHM Authentication Bypass via Session-File CRLF Injection 4-stage exploit chain · Interactive WHM Shell · Bulk scanner · Pipeline ready · stdlib only

Redhat team have no time to fix this cve

Copy Fail (CVE-2026-31431) is severe enough that we wanted to create a patch ASAP. If you run AlmaLinux on a multi-tenant host, container build farm, CI runner, or any system where untrusted users can get a shell, please read this blog post! almalinux.org/blog/2026-05-0…

‼️Copy Fail (CVE-2026-31431) is a Linux privilege escalation bug that lets any local user get root using a 732-byte Python script, and itworks on basically every major Linux distro shipped since 2017. Website: copy.fail Write-up: xint.io/blog/copy-fail… GitHub: github.com/theori-io/copy… It's a logic flaw in the kernel's crypto code (authencesn via AF_ALG and splice()) that allows a small write into the page cache, which can be used to tamper with a setuid binary like /usr/bin/su. Think how bad this is going to be for shared environments like Kubernetes, CI runners, and cloud sandboxes, where it enables container escape and tenant-to-host compromise. Found by Theori's Xint Code scanner, patched in the mainline kernel, and publicly disclosed on April 29, 2026; if you can't patch right away, the recommended workaround is to disable the algif_aead module.

Build a CDN from scratch using nginx and lua github.com/leandromoreira…

@ridwanhr Shutter count pak gub? Check karet2nya jg pak gub.

Canon 5D seken udah murah ya, kalau beli seken, selain body count apa aja yang mesti dicek ya?

‼️🇮🇩 A threat actor has allegedly leaked 53,993 records from SIMOJANG (Sistem Informasi Monitoring Jabar Caang), an Indonesian provincial government monitoring system. The data reportedly includes monitoring statuses, names, NIK numbers, addresses, property ownership details, GPS coordinates, photos, electrical status, and other residential infrastructure data. The data is being distributed for free.

CISA says critical VMware RCE flaw now actively exploited - @serghei bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

‼️CVE-2026-24858: Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability Severity: Critical CVSS: 9.8 Zero Day: Yes CVE Published: January 27th, 2026 Advisory: github.com/advisories/GHS… An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 through 7.2.11, FortiAnalyzer 7.0.0 through 7.0.15, FortiManager 7.6.0 through 7.6.5, FortiManager 7.4.0 through 7.4.9, FortiManager 7.2.0 through 7.2.11, FortiManager 7.0.0 through 7.0.15, FortiOS 7.6.0 through 7.6.5, FortiOS 7.4.0 through 7.4.10, FortiOS 7.2.0 through 7.2.12, FortiOS 7.0.0 through 7.0.18 may allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices.

Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks. bleepingcomputer.com/news/microsoft…

VMware ESXi zero-days likely exploited a year before disclosure - @billtoulas bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

Patah hati terbesar kami ketika mendengar cerita Pak Reje (kepala desa) di Aceh Tengah yang akses desanya tertutup akibat jembatan putus dan jalan longsor. Inilah yang menyebabkan kami fokus perbaikan akses. Tanpa akses, ekonomi tidak berputar. Masyarakat tidak bisa jual beli.

Tolong jangan tinggalkan mereka, jangan teralih fokus. Bencana ini belum selesai. Mari berjuang bersama..

Jackie Chan speaking about the children of Gaza 💔

Gather 'round, friends, because we're dropping knowledge with a little something we call #AlmaTips. Today's tip is how to install Nvidia drivers on AlmaLinux. Take it away, Eric! 👇

Bencana kok masih disuruh beli ? Kenapa gak dibagikan gratis ? Rumah hancur semua habis masih dibebani untuk beli ini itu untuk kebutuhan sehari hari Yang sebenarnya tugas dasar negara memberikan bantuan untuk kebutuhan sehari hari saat terjadi bencana #PrayForAceh

sejauh ini masih omon2.