Hackers, for the next 12 hours I’m going to run an experiment: you tell me which vulnerability class you want to learn more about and I will write vulnerable code so you can run and exploit it locally. Tweet me the vuln type and I’ll add code to a repository. #TogetherWeHitHarder
🐱 GhostCat ~ A new high risk 'file read/inclusion' vulnerability (CVE-2020-1938) affects all versions of 'Apache Tomcat' (9.x/8.x/7.x/6.x) released in the past 13 years.
Details: https://t.co/GytUFZl4wp
You should patch it ASAP, as several PoC exploits have been posted online.
Oi meu povo! Sou virologista e doutorando em Imunologia. Com o primeiro caso de coronavírus (covid-2019 pros parças) no Brasil, fiz essa thread explicando como se proteger e porque essas medidas são importantes! Segue o fio:
#CoronavirusOutbreak#coronavirusbrasil#COVID2019
A API de reconhecimento de imagem do Google não vai mais devolver etiquetas "homem" ou "mulher" em fotos de pessoas. A política de IA do Google diz que gênero não pode ser definido por aparência e deve evitar comportamentos enviesados. Ponto pro @Google.
My write-up covering @offensive_con talk!
CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem
https://t.co/rXTaqzoAAZ
@offensive_con slides: https://t.co/oKyNC3dTER
PoC exploit demo video: https://t.co/tIaurXLAOF
Enjoy!
As there's misinformation about this floating around: There will be no PHP 7.5 release, and the PHP 8.0 release is still tentatively scheduled for December this year, per our usual release cycle. Might slip, but I don't know where people got "September 2021" from, it's wrong.
As many people are hitting this: In PHP 7.4.2, using the opcache.preload_user option may cause crashes. If your setup requires it (because you're running PHP as root), please wait for the 7.4.3 release.
Our blog is officially live: https://t.co/TWnqgH2x9P… - our first article, by @josevalim, shows how we implemented the blog itself, using some neat Elixir and Phoenix features! #myelixirstatus