| user: | hexa- |
| created: | March 22, 2014 |
| karma: | 409 |
| about: | NixOS committer, infra team lead, security team member |
| 1. | Nix: Privilege escalation via symlink following during FOD output registration(discourse.nixos.org) |
| 2. | |
| 3. | CVE-2021-3011: Key recovery on Google Titan Key(ninjalab.io) |
| 4. | Provide GtkEmojiChooser as Public API(gitlab.gnome.org) |
| 5. | .org TLD was sold to private investor(internetsociety.org) |
| 6. | QualPwn – Exploiting Qualcomm WLAN and Modem over the Air(blade.tencent.com) |
| 7. | Cisco IOS/iOS XE: Smart Install Remote Code Execution Vulnerability(tools.cisco.com) |
| 8. | |
| 9. | Ensure kdbus isn't used(github.com) |
| 10. | New Ubiquiti AC products locked against 3rd party firmware(lists.openwrt.org) |
| 11. | Patch against OpenSSH 6.8p1 – What does that mean?(twitter.com) |
| 12. | OpenSSL bug CVE-2014-0160 – Torproject Advisory(blog.torproject.org) |
| 13. | How to design an elliptic-curve signature system(blog.cr.yp.to) |
| 14. | Tor: Directly connecting users from Turkey(metrics.torproject.org) |