frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Fragnesia Made Public as Latest Linux Local Privilege Escalation Vulnerability

https://www.phoronix.com/news/Linux-Fragnesia
15•mikece•1h ago

Comments

bestouff•45m ago
Lots of privilege escalations these days. But are there that many multiuser Linux systems nowadays ? I'm under the impression the whole landscape is either servers or single-user desktops (and ofc Android phones).
INTPenis•33m ago
The idea is that you can exploit a service hosted on Linux to run these.
zahlman•18m ago
I impersonate multiple users on my machine for organizational reasons.

LPEs also potentially make user-level malware into system-level malware, which is only marginally more impactful for a single person on a desktop, but considerably harder to clean up. (It also broadens the range of what such malware could exfiltrate from me.)

itintheory•30m ago
Sounds like this one is in the same kernel modules as dirtyfrag, so the existing mitigations (if in place) are sufficient.
chasil•5m ago
RedHat's mitigation is this:

  $ cat /etc/modprobe.d/dirtyfrag.conf
  install esp4 /bin/false
  install esp6 /bin/false
  install rxrpc /bin/false
Are those correct for this exploit?

https://access.redhat.com/security/vulnerabilities/RHSB-2026...

nubinetwork•9m ago
At what point do we all start rolling our own microkernels? This is kind of getting silly now... 4 in the past month?

Setting up a free *.city.state.us locality domain

https://fredchan.org/blog/locality-domains-guide/
239•speckx•2h ago•64 comments

Haiku

https://www.haiku-os.org
82•tosh•1h ago•23 comments

Open Source Resistance: keep OSS alive on company time

https://ossresistance.com/
96•mikemcquaid•2h ago•41 comments

S-100 Virtual Workbench

https://grantmestrength.github.io/S100/
40•rbanffy•1h ago•6 comments

Launch HN: Ardent (YC P26) – Postgres sandboxes in seconds with zero migration

https://www.tryardent.com/
16•vc289•36m ago•5 comments

A History of IDEs at Google

https://laurent.le-brun.eu/blog/a-history-of-ides-at-google
35•laurentlb•4d ago•1 comments

Xs of Y – roguelike that names itself every run. Written in 4kLoC

https://github.com/nooga/xsofy
50•andsoitis•3d ago•14 comments

Reverting the incremental GC in Python 3.14 and 3.15

https://discuss.python.org/t/reverting-the-incremental-gc-in-python-3-14-and-3-15/107014
124•curiousgal•3d ago•37 comments

Leaving GitHub for Forgejo

https://jorijn.com/en/blog/leaving-github-for-forgejo/
383•jorijn•4h ago•205 comments

Heritability of human life span is ~50% when heritability is redefined

https://dynomight.net/lifespan/
38•surprisetalk•1d ago•18 comments

The US is winning the AI race where it matters most: commercialization

https://avkcode.github.io/blog/us-winning-ai-race.html
54•akrylov•3h ago•108 comments

An idiot's guide to lead optimisation for proteins

https://magnusross.github.io/posts/protein-lead-optimisation-1/
90•magni121•2d ago•6 comments

New stainless steel can survive conditions for hydrogen production in seawater

https://www.sciencedaily.com/releases/2026/05/260510030950.htm
230•HardwareLust•2d ago•104 comments

Preserving Fisher-Price Pixter

https://dmitry.gr/?r=05.Projects&proj=37.%20Pixter
161•dmitrygr•2d ago•31 comments

I moved my digital stack to Europe

https://monokai.com/articles/how-i-moved-my-digital-stack-to-europe/
664•monokai_nl•5h ago•450 comments

Restore full BambuNetwork support for Bambu Lab printers

https://github.com/FULU-Foundation/OrcaSlicer-bambulab
611•Murfalo•19h ago•272 comments

Substrate (YC S24) Is Hiring a Technical Success Manager

https://www.ycombinator.com/companies/substrate/jobs/T2fMBhD-technical-success-manager
1•kunle•5h ago

Kickstarter is forced to ban adult content by payment processors

https://kotaku.com/kickstarter-is-the-latest-platform-seemingly-forced-to-ban-adult-content-by-pa...
191•stalfosknight•2h ago•142 comments

Googlebook

https://googlebook.google/
887•tambourine_man•23h ago•1471 comments

Show HN: Needle: We Distilled Gemini Tool Calling into a 26M Model

https://github.com/cactus-compute/needle
581•HenryNdubuaku•23h ago•168 comments

Deterministic Fully-Static Whole-Binary Translation Without Heuristics

https://arxiv.org/abs/2605.08419
270•matt_d•13h ago•64 comments

Using OR-Tools CP-SAT for Scheduling Problems

https://atalaykutlay.com/or-tools-cp-sat-for-scheduling-problems.html
55•akutlay•6h ago•22 comments

Web Server on a Nintendo Wii

http://wii.sjmulder.nl/
77•adunk•3d ago•24 comments

50K Tahoe residents need power as utility eyes redirecting lines to data centers

https://fortune.com/2026/05/12/lake-tahoe-data-center-49000-residents-power-source/
64•cdrnsf•2h ago•63 comments

Nailing jelly to a wall: is it possible? (2005)

https://greem.co.uk/otherbits/jelly.html
39•microsoftedging•4d ago•14 comments

Why senior developers fail to communicate their expertise

https://www.nair.sh/guides-and-opinions/communicating-your-expertise/why-senior-developers-fail-t...
739•nilirl•1d ago•313 comments

How to make your text look futuristic (2016)

https://typesetinthefuture.com/2016/02/18/futuristic/
449•_vaporwave_•21h ago•57 comments

Cost of enum-to-string: C++26 reflection vs. the old ways

https://vittorioromeo.com/index/blog/refl_enum_to_string.html
39•sagacity•8h ago•51 comments

Fragnesia Made Public as Latest Linux Local Privilege Escalation Vulnerability

https://www.phoronix.com/news/Linux-Fragnesia
15•mikece•1h ago•6 comments

CERT is releasing six CVEs for serious security vulnerabilities in dnsmasq

https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
357•chizhik-pyzhik•23h ago•197 comments