A twenty-five years old #curl bug
daniel.haxx.se/blog/2024/12/12…
I have talked about old curl bugs before, but now we have a new curl record. When we announced the security flaw CVE-2024-11053 on December 11, 2024 together with the release of curl 8.11.daniel.haxx.se
Help us improve LibreOffice Writer!
Take a few minutes to share your thoughts on the templates you need most. Your input will directly shape new, user-friendly templates. Survey is open for the next 2 weeks! 💡
👉 survey.documentfoundation.org/…
(We needed to restart the survey since it run on a non-free platform. Sorry for the inconvenience.)
reshared this
Übermorgen, am Freitag, den 13.12. ist schon wieder Metaday!
Leopold Zyka erzählt über das OpenLandLAB, eine Hackbase im Burgenland.
Los geht's um 19:00, nach dem Hauptvortrag gibt es Lightning Talks. Und Afterparty beim Metarave im Anschluss!
Der Vortrag wird in ÖGS gedolmetscht.
Mehr Infos: metalab.at/wiki/Metaday_101
Cyber Quest is a cyberpunk roguelike deck-builder. Assemble a ragtag crew of hackers, mercenaries, and street-savvy rogues to take on the most feared crimeAccessible Android
Paměť novin – aplikace, která umožňuje sémantické vyhledávání ve starých novinách z přelomu 19. a 20. století. Jedná se o prototyp určený k testování, minulý týden zpřístupněný účastníkům konference Archivy, knihovny, muzea v digitálním světě 2024.
Aplikaci můžete vyzkoušet na pametnovin.cz, kde použijete přihlašovací údaje:
👤 Uživatelské jméno: pametnovin
🔒 Heslo: pametnovin
Klíčová čísla
🗞️ 16 novinových titulů
📅 Období: 1893 až 1913
📰 44 000 výtisků
📄 350 000 stran
🔍 7 milionů prohledávatelných textů
Co aplikace umí?
✅ Identifikuje nejrelevantnější články na základě vašeho dotazu díky sémantickému vyhledávání.
✅ Vytváří odpovědi pomocí velkého jazykového modelu, který kombinuje informace z historických textů.
✅ Poskytuje zpětné odkazy na zdroje.
Aplikace přináší nový způsob interakce s rozsáhlými digitálními archivy, umožňuje objevování historických událostí v kontextu a usnadňuje práci s velkým množstvím dat.
Stále se jedná o prototyp, a proto oceníme vaši zpětnou vazbu!
🔗 Vyzkoušejte ji na pametnovin.cz
Apple has today released iOS 18.2 and iPadOS 18.2 to the public; bringing several accessibility fixes and feature refinements for blind, DeafBlind, and low vision users. iOS 18.www.applevis.com
Video created by Jason GaleaPetroDragonic ApocalypseFlapping wings weaving throughCrocodile obsolete Flattened raze Spraying flames Blood curdle screechDrago...YouTube
The iOS 18.2 update that Apple introduced today brings layered Voice Memos recordings to the iPhone 16 Pro and iPhone 16 Pro Max for the first time,...Juli Clover (MacRumors.com)
Figma raising their prices by 20-33%.
(Psst, @penpot offers some great prices that don't require a 5 minute video to understand 👉 penpot.app/pricing)
Looking for Penpot pricing? It's free! Click here to read about our teams journey and aspirations for the future.penpot.app
Krispy Kreme suffered a security breach that has affected online donut ordering systems as it works to remediate.Umar Shakir (The Verge)
Microsoft on Wednesday announced a new feature coming soon to Windows that will let users easily share files between an...Filipe Espósito (9to5Mac)
Huge announcment from Google this morning: Introducing Gemini 2.0: our new AI model for the agentic era. There’s a ton of stuff in there (including updates on Project Astra and …simonwillison.net
Gemini 2.0 introduces multilingual native audio output. Watch this demo to see how this new capability can help developers build multimodal AI agents. These ...YouTube
Provided to YouTube by Universal Music GroupAmarok (2000 Digital Remaster) · Mike OldfieldAmarok℗ 2000 Oldfield Music Limited, under exclusive license to Mer...YouTube
"Make it quick, I have a date with the magnetic nymph."
#unix_surrealism #satyr #technomage #comic #foss #nietzsche #silenus
Hysterical, even if you don’t know your Mozart from your Bach, but exquisitely performed if you do! In the UK for one week only this year!
“We exist despite the sober formality of great concert halls, despite the boredom of classical musicians’ life, despite fanatic lovers of classical music, despite fans of rock, rap or pop who are afraid of classical music. We treat our Muse with a humorous irony and we’re sure, she will have nothing against it!”
The MozART Group are in the UK for one week only!
Looking forward to taking the wife to enjoy this in a few months. Something to Look Forward to in the New Year!
Provided to YouTube by Universal Music GroupIn The Pool (Remastered 2015 / Bonus Track) · Mike OldfieldDiscovery℗ 2015 Oldfield Music Limited, under exclusiv...YouTube
Help us improve LibreOffice Writer!
Take a few minutes to share your thoughts on the templates you need most. Your input will directly shape new, user-friendly templates. Survey is open for the next 2 weeks! 💡
No podľa mňa sú to nerealistické očakávania toho, čo je technologická revolúcia. Ony sa dejú pomaly a len spätne si ich predstavujeme prudko.
Ja si naozaj myslím, že o 10-15 rokov bude s AI skoro každý pracovať alebo ich prácu ovplyvní. O 50 rokov bude všadeprítomné a zapletené do každého aspektu života. Keď sa pozriem na iné dôležité technológie (internet, atómová energia, parný stroj,...), tiež to boli revolúcie trvajúce desaťročia.
A to som vo svojich odhadoch konzervatívny.
🚀 Novinka od týmu OSCloud! 🌟
S radostí vám představujeme naši vlastní PeerTube instanci: VHSky.cz! 🎥✨
📽️ VHSky.cz je komunitní platforma pro sdílení videí. Bez reklam, bez sledování, jen čistá radost z tvorby a sdílení. 🐾
Hostujte svá videa.
Objevujte originální obsah.
Připojte se k nám a buďte součástí komunity! 🌍
🛡️ Co je PeerTube?
PeerTube je open-source platforma pro sdílení videí, která nabízí decentralizovaný přístup k hostování.
Žádné reklamy, žádné sledování.
Umožňuje propojení s dalšími instancemi díky síti federace.
🔒 Bezpečnost a soukromí
Vaše soukromí je naší prioritou. Na VHSky.cz:
Neshromažďujeme zbytečná data.
Data jsou chráněna a bezpečně ukládána.
💡 Proč to děláme?
Chceme vytvořit prostor, kde mohou tvůrci a diváci sdílet a objevovat videa bez vlivu korporací. Naším cílem je podporovat svobodu projevu, komunitní spolupráci a bezpečnost na internetu.
📝 Registrace
Registrace na VHSky.cz jsou aktuálně schvalovány moderátory, aby byla zajištěna kvalita obsahu a bezpečné prostředí.
Máte zájem? Kontaktujte mě, nebo @cynik_obecny přímo tady, nebo navštivte vhsky.cz.
#opensource #peertube #fediverse #Video #activitypub
Provided to YouTube by Universal Music GroupPoison Arrows (Remastered 2015) · Mike OldfieldDiscovery℗ 2015 Oldfield Music Limited, under exclusive license to...YouTube
If you have time to dance the Hokey Pokey, you have time to get your security clearance.
Let me know when Global News, CTV, CBC, etc., AKA Canada's legacy, covers Pierre Poilievre's LACK of security clearance.
toronto.com/news/pierre-poilie…
#NOTALEADER #LEADERSDONOTDANCETHEYLEAD #cdnpoli #polcan
Another non-confidence vote was taken in the House of Commons today.Toronto.com
"Nearly 70% of those laid off in the 2022 tech layoffs were women."
Since there's only 21% women in tech, I can't see how this is anything other than discrimination.
wired.com/story/tyranny-tech-b…
Job termination rates also show discrimination against BIPOC, queer, and disabled people.
prismreports.org/2023/04/03/te…
Via paris@hachyderm.io who saw the Wired article, and jmcrookston@mastodon.social who found a link to the Prism report.
Coalitions between feminist movements, minorities, and labor activists will help keep the Silicon Valley moguls in check.Coleen M. Carrigan (WIRED)
The 2022 tech layoffs were 70% women. BIPOC, queer, and disabled workers were also terminated at higher rates.
While we can't prevent corporate layoffs, we can ensure the future of the free and open source community is more diverse and inclusive. Outreachy and Conservancy are vital to that future.
@outreachy connects people who face discrimination and systemic bias to internships in free and open source software. @conservancy staff and contractors run Outreachy.
Outreachy corporate sponsorships and grants have been drastically reduced since 2022. This means Outreachy can't offer as many internships to people who face discrimination and systemic bias in tech. Outreachy's normal 60 to 70 intern cohorts have been reduced to 25 to 35 interns.
Please consider donating to the Conservancy fundraiser, in support of Outreachy and the diverse and inclusive future FOSS needs:
The Software Freedom Conservancy provides a non-profit home and services to Free, Libre and Open Source Software (FLOSS) projects.sfconservancy.org
reshared this
What the shitting shit are you doing Microsoft, you shits? What an epic shit show of epic shitting proportions!
Microsoft is giving Copilot a new taskbar UI and keyboard shortcut on Windows
theverge.com/2024/12/10/243182…
Microsoft is changing how Copilot works on Windows yet again. A new update includes a quick view UI and a new keyboard shortcut.Tom Warren (The Verge)
He knows when you are sleeping
He knows when you're awake
He knows when you are taking
An unauthorized pee break
No byla by jí škoda @
SpaceLifeForm
in reply to daniel:// stenberg:// • • •Kudos for admitting that it was your coding mistake.
So, this bug could have gotten it's drivers license 9 years ago.
Was it found via fuzzing?
And no one actually ran into it?
daniel:// stenberg://
in reply to SpaceLifeForm • • •SpaceLifeForm
in reply to daniel:// stenberg:// • • •@harrysintonen
Debugging the old fashioned way.
Some of the craziest bugs are found by studying the code because otherwise no one may run into them for a very long time.
Harry Sintonen
in reply to daniel:// stenberg:// • • •Indeed, it was all manual code review. Fuzzing can only go so far in detecting logic flaws (since logic flaws rarely result in a crash, they're quite difficult to instrument).
As background: I spotted some unrelated commit to the .netrc parsing code and that brought this ancient code to my attention. Fairly quickly I could see that *something* was off but couldn't put a pin on it immediately. After some pondering, I could figure out a scenario that would show demonstrable information leak.