web01.fireside.fm Mon, 15 Jun 2026 05:30:17 -0500 Fireside (https://fireside.fm) Sudo Show - Episodes Tagged with “Framework 13 Pro” https://sudo.show/tags/framework%2013%20pro Thu, 14 May 2026 05:00:00 -0600 The Sudo Show covers topics ranging from Open Source in business to deep dives into complex technology. en-us episodic Where Business Meets Open Source Sudo Show The Sudo Show covers topics ranging from Open Source in business to deep dives into complex technology. no devops, it, cloud native, technology, sudo, linux, open source, work from home, productivity, red hat, FOSS, information technology Sudo Show podcast@sudo.show 76: ABCs of CVEs | SUDO Show 76 https://sudo.show/76 943423ac-1f30-43fd-ac3c-532e95f34891 Thu, 14 May 2026 05:00:00 -0600 Sudo Show full Sudo Show SUDO Show 76, “ABCs of CVEs,” walks through how modern Linux vulnerabilities are discovered, disclosed, and patched—from AI‑assisted finds like Pack2TheRoot and copy.fail to Dirty Frag’s embargo drama. Bill, Neal, and Brandon then dig into real‑world patching practices, tools like Foreman and Uyuni, and how to interpret CVSS scores and risk without panicking. 51:43 no <p>SUDO Show 76, “ABCs of CVEs,” breaks down how modern Linux vulnerabilities go from scary headlines to real-world fixes. Bill, Neal, and Brandon start with conferences and Neal’s new Framework 13 Pro running Fedora, then dive into AI‑assisted security research and what tools like Claude and others are actually doing in the CVE pipeline. Neal walks through recent high‑profile issues like Pack2TheRoot in PackageKit, the copy.fail kernel optimization bug, and the Dirty Frag vulnerability, explaining how disclosure, embargoes, and coordination really work from a distro maintainer’s perspective. Brandon then focuses on CVE patching best practices, testing and release strategies, tools like Foreman and Uyuni for managing updates, and how to interpret CVSS scores and risk without panicking, before the crew wraps with advice for new grads who want to get into security without setting their hair—or their clusters—on fire.</p> <p><strong>Show Links:</strong></p> <ul> <li>Foreman – <a href="https://theforeman.org/" rel="nofollow noopener">https://theforeman.org/</a></li> <li>Uyuni – <a href="https://www.uyuni-project.org/" rel="nofollow noopener">https://www.uyuni-project.org/</a></li> <li>Pack2TheRoot – Linux local privilege escalation write‑up <ul> <li><a href="https://github.security.telekom.com/2026/04/pack2theroot-linux-local-privilege-escalation.html" rel="nofollow noopener">https://github.security.telekom.com/2026/04/pack2theroot-linux-local-privilege-escalation.html</a></li> </ul></li> <li>copy.fail – kernel copy‑on‑write vulnerability <ul> <li><a href="https://copy.fail/" rel="nofollow noopener">https://copy.fail/</a></li> </ul></li> <li>Dirty Frag – universal Linux LPE PoC <ul> <li><a href="https://github.com/V4bel/dirtyfrag#dirty-frag-universal-linux-lpe" rel="nofollow noopener">https://github.com/V4bel/dirtyfrag#dirty-frag-universal-linux-lpe</a></li> </ul></li> </ul> <p><strong>Connect with the Hosts:</strong><br> Bill - @ctlinux on Mastodon<br> Neal - @<a href="mailto:neal@social.gompa.me" rel="nofollow noopener">neal@social.gompa.me</a> on Mastodon<br> Noel - <a href="https://github.com/noelmiller" rel="nofollow noopener">https://github.com/noelmiller</a> </p> open source, opensource, technology, enterprise, business, software, linux, SUDO Show, ABCs of CVEs, Linux, security, CVE, CVSS, vulnerabilities, AI and security, Claude, Mistral, PackageKit, Pack2TheRoot, copy.fail, Dirty Frag, Linux kernel, Fedora, Fedora Workstation, Framework 13 Pro, disclosure, responsible disclosure, embargo, Linux distros, patching best practices, Foreman, Uyuni, risk management, immutability, zero CVE, sysadmin, DevOps, new grads in security SUDO Show 76, “ABCs of CVEs,” breaks down how modern Linux vulnerabilities go from scary headlines to real-world fixes. Bill, Neal, and Brandon start with conferences and Neal’s new Framework 13 Pro running Fedora, then dive into AI‑assisted security research and what tools like Claude and others are actually doing in the CVE pipeline. Neal walks through recent high‑profile issues like Pack2TheRoot in PackageKit, the copy.fail kernel optimization bug, and the Dirty Frag vulnerability, explaining how disclosure, embargoes, and coordination really work from a distro maintainer’s perspective. Brandon then focuses on CVE patching best practices, testing and release strategies, tools like Foreman and Uyuni for managing updates, and how to interpret CVSS scores and risk without panicking, before the crew wraps with advice for new grads who want to get into security without setting their hair—or their clusters—on fire.

Show Links:

Connect with the Hosts:
Bill - @ctlinux on Mastodon
Neal - @neal@social.gompa.me on Mastodon
Noel - https://github.com/noelmiller

]]> SUDO Show 76, “ABCs of CVEs,” breaks down how modern Linux vulnerabilities go from scary headlines to real-world fixes. Bill, Neal, and Brandon start with conferences and Neal’s new Framework 13 Pro running Fedora, then dive into AI‑assisted security research and what tools like Claude and others are actually doing in the CVE pipeline. Neal walks through recent high‑profile issues like Pack2TheRoot in PackageKit, the copy.fail kernel optimization bug, and the Dirty Frag vulnerability, explaining how disclosure, embargoes, and coordination really work from a distro maintainer’s perspective. Brandon then focuses on CVE patching best practices, testing and release strategies, tools like Foreman and Uyuni for managing updates, and how to interpret CVSS scores and risk without panicking, before the crew wraps with advice for new grads who want to get into security without setting their hair—or their clusters—on fire.

Show Links:

Connect with the Hosts:
Bill - @ctlinux on Mastodon
Neal - @neal@social.gompa.me on Mastodon
Noel - https://github.com/noelmiller

]]>