CVE-2025-32463 looks bad. Systems with sudo versions 1.9.14 to 1.9.17 and support for /etc/nsswitch.conf (that's most modern dists) allow users not even in sudoers to acquire root by sudo --chroot on a chroot they can write into.

https://seclists.org/oss-sec/2025/q2/288

The --chroot flag is now deprecated. I guess there must be a few build systems affected by that.

BTW is the CSS on TFA making the text unreadably low contrast for others too?

Readable: https://www.stratascale.com/vulnerability-alert-CVE-2025-324...

Cutting AWS Costs by over 50%: Case Study on Moving OpenSearch and RDS to EC2 (kevinhq.com)

Changes to the Microsoft for Startups program – July 1, 2025 (learn.microsoft.com)

Building a Custom Klaviyo Subscription Plugin for WordPress (kevinhq.com)

Building a professional design tool on the web (2015) (madebyevan.com)

Large Atomic Model's checkpoint has reached over 10G (huggingface.co)

Apple Accuses Former Employee of Stealing Vision Pro Secrets (macrumors.com)

Can AI help in tackling mental health issues? (hawkradius.com)

Adding SQLLogicTest Support to Mochi (github.com)

Canada's "Strong Borders Act" (Bill C-2) Contains Four Mass Surveillance Trojans (easydns.com)

Elasti: Lightweight Scale-to-Zero for Existing Kubernetes Services (github.com)

Removing Hamas from power a condition for Saudi normalization (israelnationalnews.com)

U.S. Air Force Releases New UAP Video Depicting Metallic-Looking Sphere (uapregister.substack.com)

The AI-Native Software Engineer (addyo.substack.com)

Jury says Google must pay California Android smartphone users $314.6M (theguardian.com)

Show HN: Waste managment optimization with detectron2 and flask (github.com)

Custom fanless 7.5L AMD Strix Halo system (WIP) (smallformfactor.net)

OpenBAO v2.3.1 (github.com)

Big Tech is crushing middle managers (businessinsider.com)

John M. Cioffi (cioffi-group.stanford.edu)

A Class 99 – The UK's Most Powerful Locomotive [video] (youtube.com)

Show HN: Browser Based GPU Benchmarker (aistats.fyi)

Writing Is More Than a Skill – It's a Way of Joining the World (domofutu.substack.com)

Did the 'Deep State' Invent the UFO Craze? (nytimes.com)

Context Engineering vs. Prompt Engineering (vatsalshah.in)

Why Tiny Is the Future of Agentic AI (vatsalshah.in)

Artificial Super Intelligence: Forecasts and What Comes After AGI (vatsalshah.in)

Delete Tests (andre.arko.net)

Ask HN: From 10 –>100 customers–distribution playbook for engineers B2B founders

Intel's new CEO explores big shift in chip manufacturing business (reuters.com)

Show HN: I built an AI-powered tool to generate and schedule tweets (flowy.business)

The Rise of Empress (2021) (old.reddit.com)

Show HN: Congress Alerts – SMS digests of how your reps vote (sites.google.com)

Optimizing typography of insect labels using free fonts and free software (2012) [pdf] (akentsoc.org)

Show HN: Lightweight Bar to Psi Converter (bartopsi.xyz)

Vibe coding a Perl interface to a foreign library (chrisarg.github.io)

Cursive Generator – Transform Text into Beautiful Cursive Fonts Online Free (cursivegenerator.space)

Daniel Brandt's Portfolio of Custom Pool Tables (core77.com)

The White House took down nation's top climate report. Here it is (npr.org)

Stop adding booleans to programming languages (goldenstack.net)

Bill Wurtz's Notebook (billwurtz.com)

Maybe you're not Actually Trying – On selective agency in capable people (usefulfictions.substack.com)

Show HN: Legal Eyes – Turn casual payment requests into formal legal notices (legaleyes.uk)

Show HN: Tell me what sucks about your MVP (roast-my-mvp.vercel.app)

Camera Combines the Spirit of Analog and the Performance of a Vintage Digicam (petapixel.com)

AI-created videos are quietly taking over YouTube (sherwood.news)

ExpMath: Exponentiating Mathematics (darpa.mil)

"Flaky breakthroughs" pervade coaching – but no one tracks them (chrislakin.blog)

Sudo: Local Privilege Escalation via chroot option (sudo.ws)

Traceroute Lies. A Typical Misinterpretation of Output (2017) (movingpackets.net)

Propagation Networks (2009) [pdf] (dspace.mit.edu)

Sudo local privilege escalation vulnerabilities fixed

Comments (1)