LinuxWebLog.com

How CVE-2025-6018 and CVE-2025-6019 Enable Full Root Access on Linux  SOCRadar Extended Threat Intelligence

Google Chrome Warning — Windows, Android, Mac And Linux Users Act Now  Forbes

Google Chrome Warning — Windows, Android, Mac And Linux Users Act Now  Forbes

Google Chrome Warning — Windows, Android, Mac And Linux Users Act Now  Forbes

Google Chrome Warning — Windows, Android, Mac And Linux Users Act Now  Forbes

Google Chrome Warning — Windows, Android, Mac And Linux Users Act Now  Forbes

Google Chrome Warning — Windows, Android, Mac And Linux Users Act Now  Forbes

The Wallace Collection launches on Google Arts & Culture with an online experience featuring masterpieces, gigapixel details, AI Hotspots, rich stories, and a 3D art gal…The Wallace Collection launches on Google Arts & Culture with an online experience featuring masterpieces, gigapixel details, AI Hotspots, rich stories, and a 3D art gallery.

This GNOME Extension Simplifies iPhone Screen Sharing on Linux  OMG! Ubuntu

The U.S. Army Reserve has directly commissioned four top Silicon Valley executives as lieutenant colonels under a new initiative, Detachment 201, aimed at accelerating tech integration into military operations. While these part-time roles are intended to bring private-sector innovation to defense modernization, the move is pretty unusual. Gizmodo reports: The Army said in a press release that the four executives are Shyam Sankar, CTO at Palantir; Andrew Bosworth, CTO at Meta; Kevin Weil, Chief Product Officer of OpenAI; and Bob McGrew, an advisor at Thinking Machines Lab and former Chief Research Officer for OpenAI. The four men are being commissioned at the high rank of lieutenant colonel as part of a program called Detachment 201: The Army's Executive Innovation Corps. As Task & Purpose notes, the men will get to skip the usual process of taking a Direct Commissioning Course at Fort Benning, Georgia, and they won't need to complete the Army Fitness Test. The Army didn't respond to questions emailed Tuesday but said in a statement published on its website that, "Their swearing-in is just the start of a bigger mission to inspire more tech pros to serve without leaving their careers, showing the next generation how to make a difference in uniform." Their role in the Army Reserve is to "work on targeted projects to help guide rapid and scalable tech solutions to complex problems," as the Army puts it. The new reservists will serve for about 120 hours a year, according to the Wall Street Journal, and will have a lot of flexibility to work remotely. They'll work on helping the Army acquire more commercial tech, though it's not clear how conflict-of-interest issues will be enforced, given the fact that the people all work for companies that would conceivably be selling their wares to the military. In theory, they won't be sharing information with their companies or "participating in projects that could provide them or their companies with financial gain," according to the Journal. Silicon Valley has always benefited greatly from ties to the U.S. military. Silicon Valley companies were bringing in $5 billion annually from defense contracts during the Reagan administration, something that the average person may not remember about the 1980s. But it's always been an uneasy alliance for consumer-facing tech companies, especially over recent decades. That's all changing, according to many folks who align more with President Donald Trump, who was once considered a shameful person to represent in polite company. As Andrew Bosworth, the CTO at Meta, who is joining the Army Reserves, told the Wall Street Journal, "There's a lot of patriotism that has been under the covers that I think is coming to light in the Valley."

Read more of this story at Slashdot.

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions  The Hacker News

With Version 9.0 Release, ONLYOFFICE Becomes an Even Better Choice for Linux Users  It's FOSS News

An anonymous reader quotes a report from Ars Technica: Tech support scammers have devised a method to inject their fake phone numbers into webpages when a target's web browser visits official sites for Apple, PayPal, Netflix, and other companies. The ruse, outlined in a post on Wednesday from security firm Malwarebytes, threatens to trick users into calling the malicious numbers even when they think they're taking measures to prevent falling for such scams. One of the more common pieces of security advice is to carefully scrutinize the address bar of a browser to ensure it's pointing to an organization's official website. The ongoing scam is able to bypass such checks. The unknown actors behind the scam begin by buying Google ads that appear at the top of search results for Microsoft, Apple, HP, PayPal, Netflix, and other sites. While Google displays only the scheme and host name of the site the ad links to (for instance, https://www.microsoft.com/ the ad appends parameters to the path to the right of that address. When a target clicks on the ad, it opens a page on the official site. The appended parameters then inject fake phone numbers into the page the target sees. Google requires ads to display the official domain they link to, but the company allows parameters to be added to the right of it that aren't visible. The scammers are taking advantage of this by adding strings to the right of the hostname. The parameters aren't displayed in the Google ad, so a target has no obvious reason to suspect anything is amiss. When clicked on, the ad leads to the correct hostname. The appended parameters, however, inject a fake phone number into the webpage the target sees. The technique works on most browsers and against most websites. Malwarebytes.com was among the sites affected until recently, when the site began filtering out the malicious parameters.

Read more of this story at Slashdot.

Longtime Slashdot reader walterbyrd shares news that Texas Instruments has announced plans to invest more than $60 billion to expand its U.S. manufacturing operations in the United States. From a report: The funds will be used to build or expand seven chip-making facilities in Texas as well as Utah, and will create 60,000 jobs, TI said on Wednesday, calling it the "largest investment in foundational semiconductor manufacturing in U.S. history." The company did not give a timeline for the investment. Unlike AI chip firms Nvidia and AMD, TI makes analog or foundational chips used in everyday devices such as smartphones, cars and medical devices, giving it a large client base that includes Apple, SpaceX and Ford Motor. The spending pledge follows similar announcements from others in the semiconductor industry, including Micron, which said last week that it would expand its U.S. investment by $30 billion, taking its planned spending to $200 billion. [...] Like other companies unveiling such spending commitments, TI's announcement includes funds already allocated to facilities that are either under construction or ramping up. It will build two additional plants in Sherman, Texas, based on future demand. "TI is building dependable, low-cost 300 millimeter capacity at scale to deliver the analog and embedded processing chips that are vital for nearly every type of electronic system," said CEO Haviv Ilan.

Read more of this story at Slashdot.

The daughter of a Seattle woman who died during the 2021 Pacific Northwest heatwave has filed the first wrongful death lawsuit directly linking fossil fuel companies to an individual's climate-related death. Misti Leon is suing seven oil and gas companies, including ExxonMobil, Chevron, Shell and BP, claiming they caused her mother Juliana Leon's death from hyperthermia on June 28, 2021, when temperatures reached 108 degrees Fahrenheit. The lawsuit alleges the companies created a "fossil fuel-dependent economy" that resulted in "more frequent and destructive weather disasters and foreseeable loss of human life." Attribution science research determined the 2021 heatwave would have been "virtually impossible" without human-made climate change and was at least 150 times rarer without warming. The case seeks damages and funding for a public education campaign about fossil fuels' role in planetary heating.

Read more of this story at Slashdot.

Godot 4.5 Beta Released With Better Wayland Support  Phoronix

iPhone sales jumped 15% year-over-year in April and May 2025, "signaling Apple's strongest two-month performance for the period since the pandemic," reports MacRumors, citing preliminary data from Counterpoint Research. From the report: The growth was driven mainly by the United States and China, Apple's two largest markets. Both regions returned to positive year-over-year growth after three years of declines during what is typically a less seasonal period. China sales were particularly notable, with Apple capturing the top spot in May. It's quite the turnaround, after Apple only recently sustained market share losses to Huawei and other local mobile vendors. [...] The report showed Japan also indicated strong iPhone demand, with the more affordable iPhone 16e proving especially popular among consumers who favor smaller devices. The device's entry-level pricing apparently appealed to Japanese tastes, while Apple also maintained strong sales for the iPhone 16 base model and even the older iPhone 14. India continued its growth trajectory as Apple expands both manufacturing and market presence in the world's most populous country.

Read more of this story at Slashdot.

Midjourney has launched its first AI video generation model, V1, which turns images into short five-second videos with customizable animation settings. While it's currently only available via Discord and on the web, the launch positions the popular AI image generation startup in direct competition with OpenAI's Sora and Google's Veo. TechCrunch reports: While many companies are focused on developing controllable AI video models for use in commercial settings, Midjourney has always stood out for its distinctive AI image models that cater to creative types. The company says it has larger goals for its AI video models than generating B-roll for Hollywood films or commercials for the ad industry. In a blog post, Midjourney CEO David Holz says its AI video model is the company's next step towards its ultimate destination, creating AI models "capable of real-time open-world simulations." After AI video models, Midjourney says it plans to develop AI models for producing 3D renderings, as well as real-time AI models. [...] To start, Midjourney says it will charge 8x more for a video generation than a typical image generation, meaning subscribers will run out of their monthly allotted generations significantly faster when creating videos than images. At launch, the cheapest way to try out V1 is by subscribing to Midjourney's $10-per-month Basic plan. Subscribers to Midjourney's $60-a-month Pro plan and $120-a-month Mega plan will have unlimited video generations in the company's slower, "Relax" mode. Over the next month, Midjourney says it will reassess its pricing for video models. V1 comes with a few custom settings that allow users to control the video model's outputs. Users can select an automatic animation setting to make an image move randomly, or they can select a manual setting that allows users to describe, in text, a specific animation they want to add to their video. Users can also toggle the amount of camera and subject movement by selecting "low motion" or "high motion" in settings. While the videos generated with V1 are only five seconds long, users can choose to extend them by four seconds up to four times, meaning that V1 videos could get as long as 21 seconds. The report notes that Midjourney was sued a week ago by two of Hollywood's most notorious film studios: Disney and Universal. "The suit alleges that images created by Midjourney's AI image models depict the studio's copyrighted characters, like Homer Simpson and Darth Vader."

Read more of this story at Slashdot.

Austria's coalition government has agreed on a plan to enable police to monitor suspects' secure messaging in order to thwart militant attacks, ending what security officials have said is a rare and dangerous blind spot for a European Union country. From a report: Because Austria lacks a legal framework for monitoring messaging services like WhatsApp, its main domestic intelligence service and police rely on allies with far more sweeping powers like Britain and the United States alerting them to chatter about planned attacks and spying. That kind of tip-off led to police unravelling what they say was a planned attack on a Taylor Swift concert in Vienna, which prompted the cancellation of all three of her planned shows there in August of last year. "The aim is to make people planning terrorist attacks in Austria feel less secure - and increase everyone else's sense of security," Joerg Leichtfried of the Social Democrats, the junior minister in charge of overseeing the Directorate for State Security and Intelligence (DSN), told a news conference.

Read more of this story at Slashdot.

An anonymous reader quotes a report from TorrentFreak: Napster, the brand synonymous with the music piracy boom of the early 2000s, has a new copyright challenge. Together with audio giant Sonos, Napster faces a lawsuit demanding over $3.4 million in alleged unpaid copyright royalties. Filed by collective rights management organization SoundExchange, the complaint (PDF) centers on missed payments related to the "Sonos Radio" service, which until 2023 was powered by Napster's music catalog. [...] Sonos Radio launched in April 2020 with Napster as the authorized agent, submitting the required royalty reports and royalties to SoundExchange. While all went well initially, payments stopped around May 2022. At the time, Napster had been acquired by venture capital firms Hivemind and Algorand, with a focus on "web3" technologies, including cryptocurrencies and blockchain. According to the complaint, the takeover resulted in a "complete breakdown of reporting and payment for the Sonos Radio service." The alleged payment problems eventually came to light during an audit initiated by SoundExchange in 2023, which concluded that Sonos and Napster owed millions in unpaid royalties. Sonos and Napster are no longer partners in the radio service, as the audio equipment manufacturer switched to Deezer around April 2023. That appears to have solved the royalty issues, but SoundExchange still believes it is owed more than $3 million. "In total, Sonos, and its agent Napster, have failed to pay at least $3,423,844.41 comprising royalties owed for the period October 2022 to April 2023, interest, late fees, and auditor fee-shifting costs, and subtracting Sonos and Napster's payments made to date. "Late fees and interest continue to grow," SoundExchange adds, while requesting compensation in full. The complaint lists one count of "underpayment" of statutory royalties, and one count of "non-payment" of royalties, as determined by the audit. For both Copyright Act violations, SoundExchange requests damages of at least $3.4 million.

Read more of this story at Slashdot.