Marcin Szewczyk

@mejmpl Samodzielnie zastosował środki wolnościowe.

XD

@PUsiadek Całkiem przyzwoity materiał o tym, jak może dojść na drodze ewolucji do sytuacji, gdy finalny efekt jest złożony z kilku współpracujących ze sobą również dość skomplikowanych elementów: youtube.com/playlist?list=…

Dowód na Stworzenie Życia. Replikacja DNA wymaga 9 złożonych nano-maszyn pracujących razem. Bez nich DNA nie może się replikować. Jeśli DNA nie może się replikować, Życie nie może ewoluować.

@donald_PL_ Wspaniały prezent dla PiS-u w temacie wymiaru sprawiedliwości. Najpierw dostaje 2 lata, potem 1.5 roku i mówi się o wolnościowych środkach, a na koniec po prostu ucieka, jak kilku poprzednich mistrzów kierownicy...

Mecenas Kozanecki, ten od "trumien na kółkach", jest poszukiwany przez policję.

@marcospereeira All the scenes seem staged.

what if pornhub built github?

@BartoszScheuer Będzie polonez z Pana Ateusza, bo kotek odkopał prezent.

Niedługo matury, więc przypominamy studniówkę z VI LO w Jaśle. Stylizacja młodzieży wzbudziła spore kontrowersje i burzliwą dyskusję w lokalnych mediach.

@rustaceans_rs You're giving him too much credit. Wolverine is a badass character.

Rust, Ubuntu and Lunduke moment!

@PokemonRCool13 @rustaceans_rs Yup, XMen most talented mermaid.

@rustaceans_rs Is that Ariel.

@LukeDashjr @brian_pak Yeah. When the trivial exploit code dropped I asked on #debian-security what was the projected timeline. There was none as there were no patches upstream for 6.1 and 6.12.

@brian_pak You claim you "waited for the patch to land", but it didn't actually exist or land until April 30th! Mainline Linux is not what people actually use.

Hey everyone. We’ve seen the discussions around Copy Fail (CVE-2026-31431) and the disclosure process. We appreciate the passion from distro maintainers, defenders, and the broader Linux community. This is a serious issue, and we want to share some context on our side in good faith. 🧵

@brian_pak That does not seem to match Greg KH's statement: > Why do you think that we knew this was "imminent"? The CVE team has no such knowlege as no one is obligated to tell us that they are about to let loose a trivial exploit. openwall.com/lists/oss-secu…

We also provided a fully working exploit to the kernel security team when we reported. We’ve since learned that such details don’t automatically get forwarded downstream and that Linux kernel commit messages are typically kept minimal. That’s simply how the process works.

@brian_pak You're omitting at least one important fact. Greg KH: > Why do you think that we knew this was "imminent"? The CVE team has no such knowlege as no one is obligated to tell us that they are about to let loose a trivial exploit. openwall.com/lists/oss-secu…

@IntCyberDigest @brian_pak @HackingLZ See openwall.com/lists/oss-secu…

Thank you for making Linux more secure. Disclosures like this one have serious real-world implications when downstream distros are still lagging behind on patches. Did you also share the details with the linux-distros mailing list (or equivalent) under embargo so vendors could prepare backports? How come they weren’t ready upon your disclosure?

@kmcnam1 Can we secretly teach it to quote and reply underneath?

Ughhh can we not?

@msalihb @xint_official @theori_io No.

@xint_official @theori_io Am I safe just because I use a python version does not support os.splice ?

Patch your Linux boxes! Copy.Fail is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years. A small, portable python script gets root on all platforms. Found by the teams at @theori_io and @xint_official More details below xint.io/blog/copy-fail…

@spendergrsec @xint_official @theori_io Another interesting comment: openwall.com/lists/oss-secu…

@xint_official @theori_io Why tell people to patch when you know their distros don't have fixes because you enabled upstream to obfuscate the vulnerability fix? The CVE (copy+pasting the fix description, as all Linux CNA CVEs do): @gregkh/" target="_blank" rel="nofollow noopener">lore.kernel.org/linux-cve-anno… makes no mention of any vulnerability.

@arktos0 Łowełem

Czym dojeżdżacie do pracy?

@retrocvnty I enjoyed that one very much. Much more than the Jude Law version.

Repo! The Genetic Opera (2008)

@kmcnam1 Same diner? :) x.com/mitsuhiko/stat…

@ErikExplains @kmcnam1 Or a couple of lost bytes indicating we're going into graphics mode now.

@kmcnam1 Consdering how much of that stuff still runs over RS232 to this day, (or USB pretending to not be RS232 but in reality is emulating RS232, or an Ethernet and TCP/IP stack that winds up feeding RS232), it's probably just a wrong baud rate / word size / partity setting somewhere.

@FrontCnot Inwestycje w papieże wartościowe?

@wiz_io @github Great clear explanation of the problem. Enjoyed reading it.

🚨 BREAKING: Wiz Research discovered Remote Code Execution on GitHub.com with a single git push The flaw in @github allowed unauthorized access to millions of repositories belonging to other users and organizations 🤯