GNU/Linux News in the Era of Science and Reason

posted by Roy Schestowitz on Oct 06, 2023

THE news about "Linux" this past week contained unwarranted misinformation and clickbait. An issue in some library not connected to Linux (GNU actually) is being mischaracterised and the severity of the issue is also mischaracterised.

The short story is, people are at risk if they do not patch their distribution and also, in addition, they acquire some software from some random site that takes advantage of a hole unknown until less than a week ago. Exploitation of the hole would likely never happen by merely upgrading existing (already installed) software like Firefox because Mozilla does not want to trick all of its users into taking "poisonous" builds that steal root access. What for anyway? What's to gain?

As such, a more reasonable and factual reporter would simply state that there this package that many GNU/Linux distros have in them, it needs to be updated (patched), and if one installs some random binary found somewhere online (not trusted sources), then there's a possibility that not only will that binary cause damage at user(space) level but also at root level. There's also the possibility that untrusted, malicious actors with an account on your server can get greater access than before (unless the system is patched quickly). But even shared hosting would have ways of tracing back who's on the system (e.g. bank accounts).

That local privilege escalation flaws are treated like a case of "sky is falling" is concerning. We saw nearly 15 headlines about it so far this week and most got the news wrong.

GNU/Linux comes from the scientific community, not the business world. We should care for facts and not be tolerant of business-sponsored spin, scaremongering etc. █

Other Recent Techrights' Posts

Fresh IBM Layoffs Reported in Europe and North America, Jobs Allegedly Moved to South Asia (Low Salaries): As usual, IBM does not talk about this
Microsoft Has Not Much Left to Show Investors, Shares Fall Almost 20%: It's not even clear how Microsoft makes money anymore
The Fall of the Open Source Initiative (OSI): The OSI Election is Rigged, Biased Against People Who Oppose the Openwashing of GPL-Violating Bots Operated by Microsoft for Profit (OSI Gets Paid to Promote This): they reckon that pretence of calm would serve them best, helped by puff pieces
In Vietnam, statCounter Sees Microsoft Windows Falling Below 7% "Market Share": Can Microsoft still demand $500 or more per Windows licence?
Links 11/03/2025: NASA Besieged and "DOGE Has Become What It Claimed To Destroy": Links for the day
Illuminating Injustice is Critical When Reckless Microsofters and Law Firms Try to Silence Reporters of Violence Against Women: I want to clarify that I'm well within my right (and not running afoul of any rules) by explaining what goes on here
EPO Central Staff Committee: "The Strategy of the Office Lacks Transparency and Cannot be Understood": Microsoft and the EPO violate data protection laws
Links 11/03/2025: Spring and Misfin Server: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, March 10, 2025: IRC logs for Monday, March 10, 2025
Latvia (and Lithuania) Stepping Away From GAFAM, Microsoft: Windows becomes unessential as Android and GNU/Linux rise
Microsoft Layoffs Are Infectious (Don't Get Acquired or Become a Partner): It seems like companies choosing to become "buddies" with Microsoft are dooming themselves and their products
A Closer Look Inside the EPO, Courtesy of Benoît Battistelli's Submissive Lapdogs Roberta Romano-Götsch and Elodie Bergot: new report comes from the Local Staff Committee Munich (LSCMN)
Links 10/03/2025: Staff Strikes, Mass Layoffs in Gaming Industry: Links for the day
Gemini Links 10/03/2025: "Eat The Rich" and Two-Year Anniversary of the 'Space Elevator' Orbit (Like 'Webring'): Links for the day
Links 10/03/2025: Small Web Praised, LLM Chatbots Exposed as Worse Than Useless Again: Links for the day
A Call for GNU/Linux and BSD Developers to Unite Against GAFAM and the Regime They Empower: We have long encouraged and continue to encourage people who value Software Freedom to altogether boycott GAFAM
The Ludicrous Mythology of Commonality as Signal of Value, Merit, Popularity: Devalue what's true, promote marketing?
[Video] Richard Stallman on the Four Essential Freedoms (Manuel Cuda News, 2025): Added to a channel several days ago by Manuel Cuda News
Gemini Links 10/03/2025: Realisation About Young People, Punks, and Discord IPO: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, March 09, 2025: IRC logs for Sunday, March 09, 2025
[Video] Richard Stallman on Understanding the Misconception of So-called 'Artificial Intelligence': to "know and understand"
FSF's Defective by Design (DBD): Amazon Tightens the Digital Handcuffs: Reproduced verbatim
The Fall of the Open Source Initiative (OSI): Plenty of Issues, Plenty of Censorship: The OSI is abusive on many levels!
EPO Staff Appraisals Apparently Benefit Kakistocracy, Including Cheaters Who Grant Illegal Patents and Punish Good Patent Examiners (Who Find Valid Reasons for Denials): In prior reports the staff representatives said that rewards typically went to people who granted many patents, i.e. didn't do proper examination and instead just allowed many fake patents get enshrined as EPs, causing fiasco (from which some patent attorneys could profit)
As The Web Gets Drowned Out, Sinking in a Pool of LLM Slop, Real News Sites With Real News Become Increasingly Rare If Not Extinct: This is a real problem
Links 09/03/2025: Moderna Patents Thrown Out, Climate United Sues E.P.A.: Links for the day
Gemini Links 09/03/2025: Lagrange 1.18.5 and Writing Mannerisms: Links for the day
Links 09/03/2025: FiveThirtyEight Killed by Disney, Nature (Journal) Chooses Suicide by Slop: Links for the day
Links 08/03/2025: International Women's Day, Software Patents Being Squashed: Links for the day
Hiding Problems Doesn't Work: transparent organisations will be more stable and sustainable
The Harder They Try to Censor, the Bigger the Scandal (and the Impact) Will Be: We don't plan to self-censor our coverage; sometimes we just delay publication a little
Gemini Links 09/03/2025: Leasehold Derangement Syndrome, Raspberry Pi, and More: Links for the day
All-Time Low for Microsoft in Africa: it helps show how irrelevant Microsoft is becoming
French woman (frontaliere) trafficked to promote unauthorised cross border Swiss insurance: Reprinted with permission from Daniel Pocock
New York Times & Guardian reporting on Modern Slavery Act prosecution of Glodi Wabelua: Reprinted with permission from Daniel Pocock
Diana & Adrian von Bidder-Senn, EVP, Palm Sunday & Debian death on wedding day: Reprinted with permission from Daniel Pocock
The RTO (Return-to-office) Layoffs or 'Soft' Layoffs at IBM and Red Hat: There are certainly many layoffs going on there, but many are described as "resignations" or "retirements" after RTO or some other form of relocation
Under the Pen Name "John O'Donnell" (LLM Slop, Not Real Article or Author) LinuxLinks Pushes Spammy Page: it happened some hours ago.
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, March 08, 2025: IRC logs for Saturday, March 08, 2025