syncop @colt@nanao.cybtex.fr

🚀 Pyodide 0.23 is out! Now featuring CPython 3.11.2 with official Tier 3 support for WebAssembly, FFI improvements, load time optimizations, and additional packages. We've also introduced an experimental SDL2 support for graphics applications in Python. 🎉

https://blog.pyodide.org/posts/0.23-release/

oh, the new dbx update has the trend micro bootloaders (CVE-2023-28005) revoked too

how nice

also: MS didn't update dbx on windows yet. (probably because CVE-2023-28005 JUST got fixed, i was told june/july for that dbx update actually), so people on windows who trust the MS UEFI third party CA are still vulnerable to shdloader until then!

REALLY great job MS! :D

CVE-2023-21036 / acropalypse is absolutely bonkers.

Apparently for 5+ years the cropping / editing tools for screenshots on Google Pixel phones was only overwriting the start of the screenshot PNG file, but not truncating.

All screenshots shared for the past 5+ years might have data recoverable from them. Demo available at https://acropalypse.app/

Google still hasn't communicated anything on this.

(h/t ItsSimonTime on Musk's site)