Aggregator

Matrix 首页推荐Matrix 是少数派的写作社区，我们主张分享真实的产品体验，有实用价值的经验与思考。我们会不定期挑选 Matrix 最优质的文章，展示来自用户的最真实的体验和观点。文章代表作者

前FBI局长因一张Instagram贝壳照片被起诉美司法部再次起诉詹姆斯·科米 ——这一次是因为这位前联邦调查局局长在 Instagram 上对特朗普总统据称发出的威胁。在周二提交给北卡罗来纳州联邦法

阅读： 36在AI开发和使用的不同阶段，企业会采用各种技术保障措施，包括在模型开发过程中应用的技术，使系统更加稳健。保障措施大致可分为三类：开发更安全的模型的技术

终端模拟器项目 Ghostty 宣布将退出 GitHub 平台，原因是在微软治理下 GitHub 越来越不稳定，严重扰乱开发者的工作。开发者称，过去一个月 GitHub 几乎天天宕机。GitHub 是工作的平台，如果每天都要宕机数小时那么它不再是一个可以工作的地方。Ghostty 项目将在未来几个月公布迁移细节，GitHub 上的项目将成为一个只读镜像。

本周，互联网网络安全态势整体评价为良。

The Fedora Project released Fedora Linux 44, delivering updated desktop environments, revised installer behavior, and several lower-level system changes across its editions and spins. The release covers the project’s flagship editions, including Workstation, KDE Plasma Desktop, Cloud, Server, CoreOS, and IoT, alongside the Atomic Desktops lineup of Silverblue, Kinoite, Cosmic, Budgie, and Sway. Alternate spins such as Cinnamon and Xfce are also available. Desktop updates Fedora Workstation 44 ships with GNOME 50, which brings refinements … More →

The post Fedora Linux 44 ships with GNOME 50 and KDE Plasma 6.6 appeared first on Help Net Security.

A vulnerability, which was classified as critical, was found in OpenClaw up to 2026.3.27. This affects an unknown part of the component Environment Variable Handler. Executing a manipulation of the argument GIT_TEMPLATE_DIR/AWS_CONFIG_FILE can lead to incomplete blacklist. The identification of this vulnerability is CVE-2026-41332. The attack can only be executed locally. There is no exploit available. You should upgrade the affected component.

A vulnerability classified as critical was found in OpenClaw up to 2026.3.27. This issue affects some unknown processing. Executing a manipulation can lead to server-side request forgery. The identification of this vulnerability is CVE-2026-34504. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is advised.

A vulnerability classified as critical was found in OpenClaw up to 2026.3.27. Affected by this issue is some unknown functionality. Executing a manipulation can lead to incorrect authorization. The identification of this vulnerability is CVE-2026-41303. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is advised.

A vulnerability identified as critical has been detected in OpenClaw up to 2026.3.23. The impacted element is an unknown function. Performing a manipulation of the argument alias results in path traversal. This vulnerability is known as CVE-2026-33581. Attacking locally is a requirement. No exploit is available. You should upgrade the affected component.

A vulnerability was found in OpenClaw up to 2026.3.27 and classified as critical. Impacted is an unknown function of the component WebSocket Handler. The manipulation results in session expiration. This vulnerability is cataloged as CVE-2026-34503. The attack may be launched remotely. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability described as critical has been identified in OpenClaw up to 2026.3.27. The impacted element is an unknown function. Executing a manipulation can lead to incorrect authorization. The identification of this vulnerability is CVE-2026-33578. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability classified as problematic has been found in OpenClaw up to 2026.3.27. This affects an unknown function of the component Webhook Endpoint. The manipulation leads to improper restriction of excessive authentication attempts. This vulnerability is referenced as CVE-2026-33580. Remote exploitation of the attack is possible. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in OpenClaw up to 2026.3.27. It has been rated as critical. Impacted is an unknown function. This manipulation causes incorrect authorization. This vulnerability appears as CVE-2026-33579. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is advised.

A vulnerability has been found in OpenClaw up to 2026.3.27 and classified as critical. Affected by this issue is some unknown functionality. Performing a manipulation results in incorrect authorization. This vulnerability is cataloged as CVE-2026-33577. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

4月28日，第三届“长城杯”网数智安全大赛（防护赛）总决赛在福建福州隆重举行。

Видеоигры в России хотят приравнять к кино.

A vulnerability described as critical has been identified in Mozilla Firefox up to 95. Impacted is an unknown function of the component Worker Handler. Executing a manipulation can lead to Remote Code Execution. This vulnerability is registered as CVE-2022-22763. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Mozilla Firefox up to 96 on Android. Affected by this issue is some unknown functionality. Performing a manipulation results in improper restriction of rendered ui layers. This vulnerability is cataloged as CVE-2022-22762. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.