news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

"Dirty Frag" (CVE-2026-43284): The Second Linux Root Exploit in Eight Days

https://www.copahost.com/blog/dirty-frag-cve-2026-43284/

11•ggallas•1h ago

Comments

tuwtuwtuwtuw•1m ago

> the attacker does not need to break in remotely. The danger is that once an attacker gets in — through a vulnerable WordPress plugin, a web shell, weak SSH credentials, or a compromised container

This part I don't understand. Wouldn't the attacker need to break in remotely? Ö

serious_angel•49s ago

Nothing surprising there, even if 50 issues will be found in a month, since there exists more advanced relativity-based automation features as LLM.

It's easier to attack a solution with its source code available, and with an LLM trained on existing vulnerabilities found, and some datacenters/funding available, et voila, you have a system set to reveal flaws in already awesome projects, to be fixed.

This is normal. You just need power, and time. And there must be more found but left undisclosed, for better times, strategic 0days etc.

Who has such power, and funding? Is it possible Linux competitors do pay enthusiasts to attack, reveal, and damage reputation? What if someone who has funding and time, would try attacking their closed source code instead? Regardless, I wish them safety and peace, too.

FreeBSD: Local Privilege Escalation via Execve()

https://www.freebsd.org/security/advisories/FreeBSD-SA-26:13.exec.asc

1•Deeg9rie9usi•1m ago•0 comments

I Caught the Car

https://undecidability.net/senior/

1•holden_nelson•1m ago•0 comments

Show HN: Simple Exif an App that allows creators take control of their metadata

https://simpleexif.com/

1•0x10ca1h0st•2m ago•0 comments

Blink – AI Assistant. A knowledge destination

https://blink-oi.vercel.app

1•Pascal1997•2m ago•0 comments

The Middle East had everything data center builders and hyperscalers wish for

https://www.tomshardware.com/tech-industry/the-middle-east-had-everything-data-center-builders-an...

1•flyaway123•3m ago•0 comments

Lobotomized Claude Code and it works better

https://github.com/skrabe/lobotomized-claude-code

1•skrabe•3m ago•0 comments

7 days of public development are complete; Thanks to everyone

https://github.com/sel8888/harmonic-shape-transform-2026-koncept

1•sel8888•3m ago•0 comments

Show HN: Vibe-coding video games with Claude (Day 26: Primetime)

https://gamevibe.us/26-primetime

1•pzxc•5m ago•0 comments

Show HN: CLI to budget Claude Code session costs

https://github.com/jher7/tokenyst

1•herrj•6m ago•0 comments

Reverting the incremental GC in Python 3.14 and 3.15

https://discuss.python.org/t/reverting-the-incremental-gc-in-python-3-14-and-3-15/107014

2•curiousgal•6m ago•0 comments

Mirage · Unified Virtual Filesystem for AI Agents – Strukto

https://www.strukto.ai/mirage

1•imperialWicket•8m ago•0 comments

OpenRouter Pareto Code: Automatic Model Routing Based on Given Performance Score

https://openrouter.ai/openrouter/pareto-code

1•theanonymousone•10m ago•0 comments

Pixels I Have Known And Loved: Memorable pixel art from the Amiga demo scene

https://datagubbe.se/pihkal/

1•arexxbifs•10m ago•0 comments

The Gemini Protocol in 2026

https://kevinboone.me/gemini_2026.html

1•birdculture•11m ago•0 comments

The next biggest moat in AI

https://twitter.com/JayaGup10/status/2052870394093408558

1•eamag•16m ago•0 comments

I Will Not Add Query Strings to Your URLs

https://susam.net/no-query-strings.html

2•speckx•17m ago•0 comments

'Devil Wears Prada 2' deal: Streep, Hathaway and Blunt make equal $12.5M

https://variety.com/2026/film/news/devil-wears-prada-2-salaries-meryl-streep-hathaway-pay-1236741...

1•firasd•19m ago•0 comments

Widely reported study suggesting divorce more likely when wives fall ill axed

https://retractionwatch.com/2015/07/21/to-our-horror-widely-reported-study-suggesting-divorce-is-...

1•user_7832•20m ago•1 comments

DNSBunker CTI – Cyber Threat Intelligence

https://codeberg.org/xRuffKez/tif

1•madspindel•20m ago•0 comments

M.stow Biopic

https://bsky.app/profile/did:plc:ves4mvlhzdg3ov7q2auhgqda/post/3mlgzvrtxhs2d

1•mstow25•23m ago•0 comments

Plan9: The Squeal to Unix [video]

https://www.youtube.com/watch?v=mbsQCnDHkZo

1•tambourine_man•23m ago•0 comments

Blog widget that switches 14 languages instantly, scroll preserved

https://blog.devforkhire.com/tech-ep1-en.html

1•hashedit•24m ago•0 comments

Ask HN: Is the job market actually bad or just different?

2•sovenyr•26m ago•0 comments

Gibraltar dumping all of its raw sewage into Mediterranean

https://www.theguardian.com/world/2026/may/06/uk-territory-gibraltar-dumps-raw-sewage-mediterranean

1•akyuu•27m ago•0 comments

Show HN: Is he OK? Senior safety monitoring app

https://howareu.app/

1•sminchev•27m ago•0 comments

The first lie about entrepreneurship

2•danish00111•30m ago•0 comments

InMusic will acquire Native Instruments, as NI joins brands from Akai to Moog

https://cdm.link/inmusic-will-acquire-native-instruments/

1•mrzool•30m ago•0 comments

In coal country, black lung surges as federal protections stall

https://e360.yale.edu/features/black-lung-pennsylvania

1•speckx•31m ago•0 comments

"ClaudeBleed" allows any Chrome extension to control Anthropic's AI assistant

https://cyberinsider.com/claudebleed-allows-any-chrome-extension-to-control-anthropics-ai-assistant/

2•flyaway123•33m ago•0 comments

Write programs you can still hack when you feel dumb

https://www.draketo.de/software/programs-you-can-still-hack-when-dumb.html

1•xhevahir•35m ago•0 comments