May 7, 2026

        May 7, 2026

May 7, 2026

        May 7, 2026

But do you know what coreutils are a fertile ground for? Race conditions around file creation, deletion, permission setting, and so on. The original code accounted for decades of hard-learned lessons in that space. The Rust rewrite did not:https://t.co/yp5WJxQZF1
— lcamtuf (@lcamtuf) May 4, 2026

                                        oss-sec: uutils coreutils CVEs

                                        AF_ALG page-cache cross-container pivot: Part I
                                    I quit the security circus a few years ago. Every now and then, though, an old friend still asks me about some kernel trick, a bug that hasn't quite died yet, or help with a little privesc gig.

sgkdev/page_inject (6 stars, C)
  CVE-2026-31431-killed page-cache exploit — code exec into containers sharing the same image layer

In an interview with Al Mayadeen that offers a remarkably clear window into Iranian strategic thinking on the war and expectations surrounding future negotiations, former IRGC commander Mohsen Rezaei says the US is trying to stage a symbolic “reopening” of the Strait of Hormuz…
— Babak Vahdad (@BabakVahdad) May 6, 2026

The only cybersecurity barrier that Mythos has lowered is the level of cybersecurity knowledge in the people talking about AI and cybersecurity.
— thaddeus e. grugq (@thegrugq) May 6, 2026

AI is still not great at xdev and often misjudges when determining exploitability of bugs 🤷🏻‍♀️
— chompie (@chompie1337) May 6, 2026

                                Don't miss what's next. Subscribe to the grugq's newsletter:

            Email address (required)

          Add a comment:

                Share this email:

                                Share on Twitter

                                Share on Hacker News

                                Share via email

                                Share on Mastodon

                                Share on Bluesky