There is a new Linux kernel exploit out named Dirty Clone [1].
The first thing to do to exploit this is to create a container with a separate network namespace via one of the following commands:
unshare -Urn
bwrap --bind / / --unshare-user --unshare-net --uid 0 --gid 0 /bin/bash
The Jfrog people…
Thanks to BookSirens for providing me with a review copy. This is an intriguing self-published novel with a backstory almost as interesting as the plot. The story is a descent into paranoia as an author is convinced that an AI is plagiarising his work. As the madness takes over, he's forced to…
En los vídeos anteriores trabajamos con datos en local (shapefiles, ortofotos descargadas). En este cuarto vídeo nos conectamos a servicios cartográficos publicados en internet por organismos oficiales, sin necesidad de descargar nada: los estándares OGC WMS y WMTS. Para un ayuntamiento esto se…
The diffoscope maintainers are pleased to announce the release of diffoscope
version 323. This version includes the following changes:
[ Chris Lamb ]
* Debian adds an extra "Flags:" line in the output of ocamlobjinfo via a
patch, so adjust how we test OCaml to ensure cross-distribution
…
Servo 0.3.0 contains all of the changes we landed in May, which came out to 391 commits (March: 534).
For security fixes, see § Security.
We’ve shipped several new web platform features:
‘font-kerning: none’ (@simonwuelker, #44634)
‘font-variant-east-asian’ (@simonwuelker,…
The Rust team has published a new point release of Rust, 1.96.1. Rust is a programming language that is empowering everyone to build reliable and efficient software.
If you have a previous version of Rust installed via rustup, getting Rust 1.96.1 is as easy as:
rustup update stable
If you don't have…
This blog post is a sequel to Your _get_type() function is not G_GNUC_CONST.
GNOME developers have long used G_GNUC_CONST, which expands to __attribute__((const)), to annotate GObject _get_type() functions, despite knowing that it is incorrect to do so. const functions by definition have no side…
File under: brief half-year catch-ups, me not remembering when I last updated the back-end of this blog
I’m writing this from a terrible AirBnB in Reading, having just wrapped up a four-day visit to my old Typography & Graphic Communication alma mater and happy to have an excuse to put off…
The Linux local root exploit of today’s news is PACKET_EDIT_MEME.c [CVE-2026-46331] which is also known as pedit COW.
This vulnerability has been fixed as of linux 7.1~rc7, but also fixed in trixies 6.12.94-1 as well as testing/unstable 7.0.13-1. If you run an older or different kernel you might…
Mozilla remains committed to maintaining a secure, trustworthy, and transparent Web PKI. Today we are announcing the publication of Mozilla Root Store Policy (MRSP) version 3.1, effective July 1, 2026.
While previous policy updates focused heavily on certificate revocation, automation, and…
The latest version of the Firefox Profiler is now live! Check out the full changelog below to see what’s changed:
Highlights:
[Markus Stange] First typed array: Allow profile.shared.stackTable.frame to be an Int32Array (#6087)
[Nazım Can Altınova] Show more user friendly errors for unsupported…
Despite vowing not to read sequels of books I love, I'm constantly surprised that regression to the mean is an iron-clad law of the universe. I thoroughly enjoyed the first book in the series, so eagerly gobbled up the second. What a burlap fool I am. What was charming and wry in The Satsuma…
Loko Scheme 0.13.0 is now available from:
https://scheme.fail/releases/loko-0.13.0.tar.gz
https://scheme.fail/releases/loko-0.13.0.tar.gz.sig
A bootable disk image for 64-bit PCs is available…
Update on what happened across the GNOME project in the week from June 19 to June 26.
Third Party Projects
Alexander Vanhee reports
I have overhauled Bazaar’s curated page. Vendors, such as distributions, can now make use of several widget types to showcase the apps they want to promote to their…
I submitted talk proposals about Pystd, the from-scratch written standard library for C++ (custom design, not a implementation of the ISO specification) to a bunch of conferences. Unfortunately all of them were rejected, so it's blog posting time.A controversial opinionPretty much everybody agrees…
I'm not paying seventy bloody quid for an official PS5 controller - so I found a knock-off version for a smidge under £40. And this one has lots of unnecessary blinkenlights! Gamrombo is the consumer-facing brand of the generically named Professional Controller Manufacturer. AKA "Huizhou Ronghui…
UN DÍA PARA COMPARTIR QGIS
(Asociación QGIS España)
Nuestra QGISesCamp2026 se ha celebrado felizmente en Madrid el pasado sábado 13 de junio de 2026. El evento, con su carácter presencial como espacio de encuentro, intercambio de conocimiento, experiencias y proyectos ha conseguido una vez más el…
This is a quick post, mostly for my own reference.
I've avoided LUTs and 'Log' video footage for years1, mostly because of the extra tiny bit of workflow involved. Like RAW photos, 'Log' footage retains the video sensor's full dynamic range, so you can pull more color and luminance information out…
On June 19 we released systemd v261 into the wild.
In the weeks leading up to that release (and since then) I have posted
a series of serieses of posts to Mastodon about key new features in
this release, under the
#systemd261
hash tag. In case you aren't using Mastodon, but would like to
read up,…
Welcome back from the Thunderbird development team!
The past few months have been exceptionally busy across the project. As we approach the midpoint of the year, we’ve been focused on a mixture of delivering user-facing features, investing in long-term architectural improvements, and preparing…
Bugs resolved in Moz-Phab 2.15.3:
bug 2049293 [moz-phab] Init errors get swallowed by Jujutsu backend
bug 2049296 [moz-phab] Add jj util backend name check for Jujutsu integration
Discuss these changes in #engineering-workflow on Slack or #Conduit Matrix.
1 post - 1 participant
…
When I started contributing to Flatseal through the Igalia Coding Experience program, I expected to spend most of my time writing code.
I quickly discovered that I was wrong.
Over the past few weeks, I’ve been working on two seemingly unrelated areas of Flatpak permissions: conditional permissions…
En el vídeo anterior cargamos capas y trabajamos su representación visual. En este tercero vamos a lo que hay “detrás” de la geometría: la tabla de atributos. Cualquier capa en un SIG lleva asociada una tabla con los datos descriptivos de cada elemento, y aprender a moverse con soltura entre mapa y…
This is another post in our series covering what we learned through the Vision Doc process. We previously described the overall approach and what we learned about doing user research, we explored what people love about Rust, dug into what it takes to ship safety-crticial Rust, and described some of…