@barray on Sat Dec 11 15:55:38 UTC 2021 said: &eI wrote a #coffeespace #article about the serious #java #log #bug #rce log4j the other day: https://coffeespace.org.uk/projects/log4.. I've seen people try to actively #exploit my #server ! There are some great #memes that have appeared as a result of this very real #security #issue https://log4jmemes.com/ Have a look through and give yourself a laugh!Ouch, the #serious #java #log #bug #rce in log4j is being actively #exploited - perhaps as early as March: https://www.rapid7.com/blog/post/2021/12.. Many #servers are being actively #attacked and #hacked right now. All from using a #logging #library !
@barray on Fri Dec 10 16:44:06 UTC 2021 said: &eOuch, the #serious #java #log #bug #rce in log4j is being actively #exploited - perhaps as early as March: https://www.rapid7.com/blog/post/2021/12.. Many #servers are being actively #attacked and #hacked right now. All from using a #logging #library !Man, quite a #serious #java #log #bug #rce found in log4j: https://www.lunasec.io/docs/blog/log4j-z.. This has *massive* ramifications against tonnes of existing #software , including even #minecraft #servers !
Man, quite a #serious #java #log #bug #rce found in log4j: https://www.lunasec.io/docs/blog/log4j-z.. This has *massive* ramifications against tonnes of existing #software , including even #minecraft #servers !
@barray on Fri Nov 12 14:02:13 UTC 2021 said: &eThe latest version of #ytoff is insanely #stable - I am now pretty happy with it. Some #bug #fixes are still required of course, but it is getting pretty close now! I believe it will be stable enough to #secretly go #live on my #coffeespace #server pretty soon.Successfully #programmed an #invidious #alternative - hopefully now #firefox stops eating my #ram and #cpu #resources . I will continue to test #ytoff #locally until I am confident enough to run it on the #coffeespace #server ... Need to deal with #youtube 's weird #ratelimiting and various other issues. That said, so far it works!
Damn, another #ram #hack #bug based on #rowhammer #bit #flips named #blacksmith https://comsec.ethz.ch/research/dram/bla.. This is possible in the latest DDR4 RAM and likely DDR5
Interesting, the #vlc #configuration #file needed to be #reset *again* - appears to be some #bug ... This is #fixed by completely #resetting all configuration. If it happens again I will grab a #screenshot and #write a #coffeespace #article so that people can #search for the #solution online - I cannot personally find any other person talking about how to fix this. Very weird...
This is an awesome #review of #linux #game #users #reporting #highqulaity #bug #reports https://old.reddit.com/r/gamedev/comment.. I very much agree with this, although it's not always true. Watching the #pine #forum for example, I see some of the worst #linux #users reporting stuff that cannot be actioned on.
Interesting #youtube #video #bug - although it's not entirely clear how it could be #exploited https://realkeyboardwarrior.github.io/se.. I guess it could be used in some kind of #ddos as it massively #multiplies the #effort their end has to do, but pretty easy for them to #patch ...
Interesting #discussion regarding the #factorio #belt #bug due to #optimization http://pubby.games/factorio.html It just tickled my interest!
@barray on Sun Sep 26 12:13:40 UTC 2021 said: &eAnd just a few more days later, #pine 's #pinetime #infinitime has yet another #update after just a few days! This time it addresses an old but pressing #bluetooth #ble #bug #fix https://github.com/JF002/InfiniTime/rele.. I am really looking forward to this one, it has caused no end of issues!Awesome, #pine 's #pinetime has a new #infinitime #update ! https://github.com/JF002/InfiniTime/rele.. It appears we now get #alarms , #time #recovery after #reset , and #bluetooth #connection #improvements ! Very cool stuff! I will update shortly!
I've seen a very similar #bug in #humanoid #robotics several times, I believe both being due to an insufficient #primitive being used to store #time https://www.hanselman.com/blog/the-code-.. The one that happened most recent was the use of a `long` value to store time, which would overflow and cause the #motion #planning to really get confused and the #robot would try to kill itself in a creative way before #crashing !
Ouch, looks like there is an extremely #lowhangingfruit of a #bug that allows for very easy #crashing of the #google #android #chrome #browser https://bugs.chromium.org/p/chromium/iss.. It is completely locking up some #phones as when it crashes it attempts to re-open the problematic #url again!
Ouch, it appears the #espressif #esp 32 has a #bluetooth #bug that allows #rce https://hackaday.com/2021/09/23/bluetoot.. I absolutely dread to think what is #vulnerable in their #wifi #stack !
Ouch, a very simple #security #bug found in a #openssl parameter #comparison #function https://karpov2007.medium.com/everybody-..
Ouch, #microsoft #vba can't even correctly evaluate #ifstatements https://stackoverflow.com/questions/6803.. It's insane this #bug even exists... This is why #opensource is so much better.
Looks like the #crypto #exchange #coinbase is locking out thousands of customers right now: https://twitter.com/CryptoWhale/status/1.. It could just be a #bug or it could be about to go very seriously sideways.