Mastodon Archives

Winsage

January 14, 2026

U.S. CISA adds a flaw in Microsoft Windows to its Known Exploited Vulnerabilities catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft Windows vulnerability, CVE-2026-20805, to its Known Exploited Vulnerabilities (KEV) catalog, with a CVSS score of 8.7. This vulnerability, part of the January 2026 Patch Tuesday updates, affects the Windows Desktop Window Manager and allows attackers to leak memory information, potentially aiding in further exploits. Federal Civilian Executive Branch agencies must address this vulnerability by February 3, 2026, as mandated by Binding Operational Directive 22-01.

BetaBeacon

November 24, 2025

RetroAchievements Is Now In Testing For GameCube Games On Android

RetroAchievements adds achievements to over 10,000 games on various consoles, including GameCube, PSP, and GBA. RetroAchievements recently announced support for Dolphin on Android devices, allowing users to earn achievements while playing GameCube games on their phones.

AppWizard

September 29, 2025

PC Gaming Show @ TGS 2025 Coverage

The PC Gaming Show at TGS 2025 showcased over 30 upcoming PC games. Key announcements include: - Nightdive Studios is remaking "Blood," set to launch on December 4th. - "Earth Must Die," a point-and-click adventure, features a voice cast including Ben Starr and Tamsin Greig; release date TBA. - A demo for "Minos," where players build labyrinths, is available now. - "Moomintroll: Winter's Warmth," a sequel to Snufkin, is in development. - "Awaysis," a dungeon brawler, has playtest sign-ups available. - "Billie Bust Up," a 3D platformer, has a new gameplay trailer; release date TBA. - "Yakuza Kiwami 3" will launch on February 11th, 2026, featuring an alternative storyline. - "Gravebound," an online extraction shooter, has a free playtest available now. - "Kaiju Cleanup" has playtest signups available. - "HOTEL BARCELONA" is out now, blending horror and action. - "Mars Tactics" will release in May 2026. - "CLAWPUNK," a roguelite, is set to launch on November 14th. - "Killing Floor 3" will receive a major update on Halloween. - "Farmbotic," a co-op farming game, is launching in 2026. - "Denshattack!" is a train stunt game coming in 2026. - "Doomspire," a roguelike deckbuilder, is out now. - "MotionRec," a puzzle platformer, is coming later this year. - "Mind Diver," a mystery adventure, is out now. - "JOIN US," a cult simulation game, is set for 2026. - "Threads of Time," a visually stunning title, has no release date yet. - "Soulmask" will leave Early Access in Q4 2025. - "Outward 2" is set for a Summer 2026 release. - "House Flipper 2" will introduce a Pets DLC next year. - "OKU," a narrative-driven game, has no release date yet. - "Morbid Metal," a single-player hack and slash roguelite, will open playtests soon. - "Huntsman," a horror game featuring giant spiders, is set to release in November 2025. - "RAEV: Kingdom on the Distant Shores" is coming in 2026. - "Absolum," a beat 'em up roguelite, launches on October 9th. - "Task Time," a competitive party game, has a playtest available now. - "BrokenLore: DON'T LIE," a psychological horror game, is in development.

AppWizard

September 20, 2025

The Humble Remedy Games 30th Anniversary Bundle Includes Essential Games For Your PC Library

Humble has launched the Humble Remedy Games 30th Anniversary Bundle, featuring titles like Control, Alan Wake, Max Payne 1+2, and Quantum Break. One tier of the bundle is priced at , while the Alan Wake 2 Deluxe Edition retails for .99. The bundle is particularly recommended for Steam Deck users, and the links provided are affiliate links that support SDHQ's development.

Winsage

September 9, 2025

Patch Tuesday September 2025 Fixes Risky Kernel Flaws

In September 2025, Microsoft released security updates addressing three significant vulnerabilities in the Windows kernel among a total of 86 CVEs. The notable vulnerabilities include: 1. CVE-2025-54110: An Elevation of Privilege vulnerability rated 8.8, involving an integer overflow in the Windows kernel that could allow an attacker to escalate privileges locally. Discovered by an anonymous researcher on Mastodon. 2. CVE-2025-53804: An information disclosure vulnerability rated 5.5, allowing exposure of specific memory addresses within kernel space, reported by Lewis Lee. 3. CVE-2025-53803: A vulnerability allowing disclosure of memory addresses through error messages, credited to Lewis Lee and three other researchers. Other high-risk vulnerabilities addressed include: 1. CVE-2025-54918: A Windows NTLM Elevation of Privilege vulnerability rated 8.8, remotely exploitable due to improper authentication, discovered by Brian De Houwer. 2. CVE-2025-55234: An 8.8-rated Windows SMB Elevation of Privilege/Improper Authentication issue. 3. CVE-2025-54916: A Windows NTFS Remote Code Execution vulnerability rated 7.8. 4. CVE-2025-54098: A Windows Hyper-V Elevation of Privilege vulnerability rated 7.8. 5. CVE-2025-54093: A Windows TCP/IP Driver Elevation of Privilege vulnerability rated 7.0. Additionally, other IT vendors like Adobe, SAP, and Ivanti released critical updates on the same day.

AppWizard

August 16, 2025

Lilbits: Desktop Linux apps on Android phones, Xbox PC gaming on ARM-based computers, and a cheaper Kindle color

Google has introduced an experimental Linux terminal application for Android users that allows the installation of Debian within a virtual machine, enabling command-line applications on Android devices. Users with Pixel 6 or later models running the latest canary builds of Android 16 can potentially enable graphical user interface (GUI) applications. An early preview of desktop Linux applications, including Chromium and GIMP, has been demonstrated on the Google Pixel 8 Pro using this new Terminal app. The Xbox PC app has added a feature for downloading games for local play on Windows 11 PCs with ARM-based processors, currently available to select members of the Windows Insider and Xbox Insider preview programs. HTC has launched Vive Eagle smart glasses in Taiwan, starting at 9, which include cameras, microphones, speakers, and AI features but lack a display. Amazon is reportedly developing a more affordable Kindle with a color display, featuring a 6-inch screen and improved color saturation.

BetaBeacon

June 28, 2025

Lilbits: Microsoft is replacing the Blue Screen of Death with a Black one, extensions are coming to Chrome for Android (kind of), and an NES emulator that lets you play classic games in 3D

Most Windows computers have become less crash-prone over the years, but Microsoft still displays a "Blue Screen of Death" when crashes occur. Microsoft is planning to update the crash screen by changing the background from blue to black and providing more useful information to help users understand why their PC stopped working.

Winsage

May 15, 2025

The ‘End of 10’ is nigh, but don’t bury your PC just yet

The "End of 10" website is a collaborative initiative aimed at educating users about alternatives to purchasing new computers as Windows 10 approaches its end of life. The official launch is set for May 28, and the site features a comprehensive list of over 70 locations worldwide for Linux support, with a significant concentration in Germany. Recent data shows that Windows 11 has a market share of 16.5%, while Windows 10 has 15.5%. Approximately 400 million Windows 10 machines cannot upgrade due to hardware limitations. The UK's Consumer Association magazine suggests converting to ChromeOS Flex for those unable to upgrade or purchase new hardware. Which? recommends Ubuntu for users willing to learn a new system, and alternatives like Linux Mint or Ubuntu flavors are suggested for those transitioning from Windows. The discussion also mentions the longevity of Windows 10 LTSC and the maturity of tools like Snap and systemd in recent years.

Winsage

March 13, 2025

Lilbits: Microsoft keeps adding AI to Notepad, a fix for broken Chromecasts, and Android 16 Beta 3

Microsoft Notepad has introduced new features, including a spell checker and an AI-powered Rewrite utility, aimed at enhancing user experience. The latest update includes a Summarize tool for generating concise summaries of selected text, available to Windows Insiders with a Microsoft account and a subscription to Microsoft 365 or Copilot Pro. Notepad version 11.2501.29.0 is rolling out in the Canary and Dev Channels on Windows 11. Additionally, the Windows Snipping Tool (version 11.2502.18.0) has been updated to allow users to draw straight lines during screen capture annotations. Android 16 Beta 3 is introducing "platform stability" and accessibility enhancements. Google is working on a fix for 2015 Chromecast devices affected by an expired certificate.

Winsage

March 5, 2025

Zero Day Initiative — CVE-2024-43639: Remote Code Execution in Microsoft Windows KDC Proxy

Integer overflows and memory corruption errors have been identified during the encoding of the kerb-message OCTET STRING field in the KDC Proxy. The ASN1encoder.buf is allocated a buffer of size 1,024, while ASN1encoder.current points to ASN1_encoder.buf + 4. The KDC Proxy accepts Kerberos responses with a maximum size of 4,294,967,295. When a Kerberos response is sent with a length from 4,294,967,291 to 4,294,967,295, an overflow occurs due to the addition being stored in a 4-byte unsigned variable, leading to a heap buffer overflow when ASN1BEREncCharString() calls memcpy(). Similarly, for responses with lengths between 4,294,966,267 and 4,294,967,290, an overflow occurs during reallocation, causing an out-of-bounds write or heap buffer overflow. An edge case arises when passing 0 as the new size to LocalReAlloc(), leading to an access violation. A remote, unauthenticated attacker could exploit this vulnerability for arbitrary code execution. Detection involves monitoring traffic on UDP port 389 and TCP port 88, focusing on Kerberos responses. If a response exceeds 0x80000000 bytes, it should be flagged as suspicious. The vulnerability was patched in November, and only KDC servers are at risk; domain controllers are unaffected. Immediate patching of all instances of the KPSSVC server is recommended.