With fresh funding from the Linux Foundation’s Alpha Omega initiative, FreeBSD is turning to AI tools and paid security staff to hunt vulnerabilities across its codebase.
Posts published in “Security”
Arch has evidently stopped new AUR registrations for the time being while maintainers scrub malware and users debate how to harden the popular community repository.
Just hours after Arch sounded the all‑clear on a massive AUR malware purge, a new, stealthier campaign is slipping malicious code back into user packages.
Arch says it's scrubbed all known malicious commits, but the 1,500‑plus affected AUR packages are a fresh reminder to "trust but verify."
Arch User Repository hit by a large-scale malware campaign, with maintainers racing to roll back malicious commits and lock out bad actors.
From Copy Fail to Dirty Frag to Fragnesia and ssh-keysign‑pwn: AI‑driven bug hunters are turning the Linux kernel into a shooting gallery.
Two kernel zero‑day fixes, two quick Tails releases, and one Tor‑backed project determined to keep its privacy‑minded users safe — this is open source security hygiene in action.
Use-after-free bug in Exim’s GnuTLS BDAT handling lets remote attackers corrupt memory, with no workaround other than upgrading to version 4.99.3.
A trusted Debian dev turns scary new kernel bugs into a temporary one‑click fix until distros ship permanent patches.
‘Copy Fail’ puts Linux users on alert as kernel patches race out and distros scramble to push them to the update channel.