Hírolvasó
Ropogósra sütötte Zuckerbergéket a szenátus
[$] LWN.net Weekly Edition for February 1, 2024
GNU C Library 2.39 released
LibreOffice 24.2 Community released
[$] OpenBSD system-call pinning
Return-oriented programming (ROP) attacks are hard to defend against. Partial mitigations such as address-space layout randomization, stack canaries, and other techniques are commonly deployed to try and frustrate ROP attacks. Now, OpenBSD is experimenting with a new mitigation that makes it harder for attackers to make system calls, although some security researchers have expressed doubt that it will prove effective at stopping real-world attacks. In his announcement message, Theo de Raadt said that this work "makes some specific low-level attack methods unfeasable on OpenBSD, which will force the use of other methods."
A locally exploitable glibc vulnerability
For example, we confirmed that Debian 12 and 13, Ubuntu 23.04 and 23.10, and Fedora 37 to 39 are vulnerable to this buffer overflow. Furthermore, we successfully exploited an up-to-date, default installation of Fedora 38 (on amd64): a Local Privilege Escalation, from any unprivileged user to full root. Other distributions are probably also exploitable.
Vulnerable systems with untrusted users should probably be updated in a timely manner.
Security updates for Wednesday
Így néz ki, amikor a Doom találkozik a bélbaktériumokkal
Egymásnak esett a TikTok és a világ legnagyobb zenekiadója
Nagyot nőtt gamingben a Microsoft az Activision bekebelezése után
Szintet lépett a Meta kódgeneráló MI-je
Kevés ok volt az ünneplésre év végén a Samsungnál
Idén talán nem lesz olyan remek éve az Apple-nek
Csúcson a GDPR-bírságok mértéke
[$] Looking ahead to Emacs 30
The state of eBPF
No doubt, eBPF will become the new layer in the new cloud native infrastructure stack, impacting the observability, performance, reliability, networking, and security of all applications, supporters say. Platform engineers will cobble together eBPF-powered infrastructure building blocks to create platforms that developers then deploy software on, adding business logic to the mix, and replacing aging Linux kernel internals that cannot keep up with today’s digital and, increasingly, cloud native world.