Popular on s4story
- Umbrella Becomes First FinOps Platform to Support AWS Billing Transfer Onboarding - 169
- HRC Fertility's Dr. Christo G. Zouves Appointed to San Mateo County Medical Association Board of Directors - 154
- Resident Inspect Joins Property Meld Nexus Network with API Integration - 118
- RAATV Premieres Original Reality Series "The Access Index: Jackson" June, 19 - 112
- RAS AP Consulting Advances to RFP Stage in Heidelberg Materials' SAP Vendor & Customer Master Data Modernization Initiative - 112
- KLEKT Announces Appointment of Jay Kimpton to Board of Directors - 112
- 'Dino Detectives' Pre-Teen Mystery Book Nominated for the 2026 Moonbeam Children's Book Awards
- Virginia Marchese's Paradox: A Nation Still Deciding Who Belongs Examines Race, Migration, Law, and America's Unfinished Struggle for Equality
- New from Regal House Publishing, A Confluence of Strangers, a found body - a mystery friends pursue
- Veikkaus Appoints New CFO as Finland's Gambling Monopoly Braces for Breakup
Similar on s4story
- Boston Industrial Solutions Launches NatronĀ® 348 UV Inkjet Ink for Epson S3200 Print Heads
- ENTOUCH Recognized on Inc.'s 2026 Best Workplaces List for the Third Year Running
- Revenue Optics Expands Its Private Equity Practice as Sponsors Move Inside Sales to the Center of Distribution Value Creation
- Lineus Medical Completes Financial Restructuring with KMF Investments- Launching a New Era for SafeBreak
- AdvisorVault Adds Social Media Archiving to its Consolidated D3P Service
- UK Financial Ltd Audits Full Ethereum Architecture Verifies Corporate Wallets and 19-Token Ecosystem Ahead of CoinMarketCap Filing for Global Ranking
- Creative Investment Research Analysis Finds Slower GDP Growth, Rising Inflation
- TechHouse Earns Highly Selective Microsoft Support Badge
- J&J Exterminating Celebrates 65th Anniversary and Unveils Strategic Vision at Annual Team Meeting
- Zenylitics Announces Leadership Transition to Continue Accelerated Growth
Sine Nomine Associates: We are constantly minding the store for our customers
S For Story/10694050
When a Linux security alert is issued our teams expertise shines.
s4story -- We hear about computer software security problems more often than ever now and with kernel attacks on Linux, it seems they get more dangerous each time. Recently a nasty Linux bug named Dirty Frag was found and our team was able to show how 25 years of development and stable releases is safer than most of the latest new kid on the block software. Building the software the harder, right way the first time with good engineering helps prevent headaches.
For the technical reader these notes will explain how a team digs in.
This class of bug is related to the low level "struct sk_buff" buffer management data structures
More on S For Story
The OpenAFS kernel module as designed does not have access to that layer of buffer management, rather it uses the regular socket APIs for network traffic.
We also had to consider what happens when people start implementing the several recommended remediation fixes to mitigate the problem in other software.
The recommended mitigation steps involve disabling the `esp4`, `esp6`, and
`rxrpc` kernel modules. These actions will not negatively impact the
functionality of the OpenAFS kernel module.
The bugs disclosed today look to be more of the same issues as the
recent "Copy Fail" issues, which also affected the kernel socket buffer
management.
You keep your team working and we will keep minding the store for you.
https://www.sinenomine.net
For the technical reader these notes will explain how a team digs in.
This class of bug is related to the low level "struct sk_buff" buffer management data structures
More on S For Story
- CAPHRA warns push for ASEAN vape ban ignores science
- Your Mortgage Toolbox Launches Free Mortgage Calculators That Show the Real Monthly Payment and Cash Needed to Close
- ENTOUCH Recognized on Inc.'s 2026 Best Workplaces List for the Third Year Running
- P-Wave Classics Opens Pre-Orders for Volume II of Robert Bage's Hermsprong
- Tuckwell Machinery Launches New Range of Woodworking Machinery
The OpenAFS kernel module as designed does not have access to that layer of buffer management, rather it uses the regular socket APIs for network traffic.
We also had to consider what happens when people start implementing the several recommended remediation fixes to mitigate the problem in other software.
The recommended mitigation steps involve disabling the `esp4`, `esp6`, and
`rxrpc` kernel modules. These actions will not negatively impact the
functionality of the OpenAFS kernel module.
The bugs disclosed today look to be more of the same issues as the
recent "Copy Fail" issues, which also affected the kernel socket buffer
management.
You keep your team working and we will keep minding the store for you.
https://www.sinenomine.net
Source: Sine Nomine Associates Inc.
Filed Under: Business
0 Comments
Latest on S For Story
- Ecuador Freedom Launches First Scheduled Motorcycle Tour of Northern Peru's Lost Kingdoms
- New Eco-Thriller Launches as UN Warns of Record Global Heat Ahead
- New from Regal House Publishing, We Meet Apart, two sisters trapped in an Irish country manor
- Lineus Medical Completes Financial Restructuring with KMF Investments- Launching a New Era for SafeBreak
- Indies United is pleased to present our June 2026 book releases
- Exclusive Red-Carpet Screening of High-Stakes Indie Thriller "Queen City: The Hornet's Nest" Coming to North Carolina on June 20th
- Neuro Recovery Institute Showcases Emerging Immersive Neuro-Rehabilitation Technology at Clinical Innovation Open House
- Community, Conservation & Waterwise Inspiration Bloom on June 6
- Chad K. Smith Releases New Self-Help Book For Teens & Young Adults Resilient Mental Health for Teen
- Industrial and systems engineers celebrate key leaders in the field at IISE Annual Conference
- Cosanostra Miami Rises as the Best Latin Nightclub in Miami in Under Two Years From its Opening
- CCHR Leader's 50-Year Fight for Psychiatric Drug Victims Gains National Momentum
- Author Releases 7-Day Screen Time Reset for Families as Teachers Worldwide Report Children "Struggling to Grasp Basic Concepts"
- Men's Health Month Begins with Record Proclamations, AP News Coverage, & National Momentum for Men's Health
- AdvisorVault Adds Social Media Archiving to its Consolidated D3P Service
- UK Financial Ltd Audits Full Ethereum Architecture Verifies Corporate Wallets and 19-Token Ecosystem Ahead of CoinMarketCap Filing for Global Ranking
- Creative Investment Research Analysis Finds Slower GDP Growth, Rising Inflation
- TechHouse Earns Highly Selective Microsoft Support Badge
- J&J Exterminating Celebrates 65th Anniversary and Unveils Strategic Vision at Annual Team Meeting
- Zeus and the Thunderers of the Ancient World