159686131
submission
Cognitive Dissident writes:
Ars Technical is reporting a major new vulnerability in Linux. Named "Dirty Pipeline" it involves abuse of 'pipes' at the shell level as you might guess.
The name Dirty Pipe is meant to both signal similarities to Dirty Cow and provide clues about the new vulnerability's origins. "Pipe" refers to a pipeline, a Linux mechanism for one OS process to send data to another process. In essence, a pipeline is two or more processes that are chained together so that the output text of one process (stdout) is passed directly as input (stdin) to the next one.
Tracked as CVE-2022-0847, the vulnerability came to light when a researcher for website builder CM4all was troubleshooting a series of corrupted files that kept appearing on a customer's Linux machine. After months of analysis, the researcher finally found that the customer's corrupted files were the result of a bug in the Linux kernel.
82217003
submission
Cognitive Dissident writes:
It's only one study, but the results are disturbing. An article in The Guardian describes a study by the UK charity Autistica showing that all people on the autism spectrum, not just the profoundly autistic, seem to be dying much younger than the average. There is no single definable cause, though a higher rate of suicide is one problem, but the aggregate result is a much higher mortality rate than the general population. There is no single cause, but a higher rate of suicide is noted. "Autistic people with no learning disabilities are nine times more likely to die from suicide compared to the rest of the population, the report states." Looks like something that needs more attention and research, which the charity is trying to organize.
67382021
submission
Cognitive Dissident writes:
The Register has a story about federal prosecutors using a law signed by George Washington to force manufacturers to help law enforcement access encrypted data on devices they manufacture. The All Writs Act is a broad statute simply authorizing courts to issue any order necessary to obtain information within their jurisdiction.
Quoting the Register Article:
Last month, New York prosecutors successfully persuaded a judge that the ancient law could be used to force an unnamed smartphone manufacturer to help unlock a phone allegedly used in a credit card fraud case. The judge ordered the manufacturer to offer "reasonable technical assistance" to make the phone's contents available.
End quote. What will happen when this collides with Apple and Google deliberately creating encryption that they themselves cannot break?
33699677
submission
Cognitive Dissident writes:
Discovery.com has an article on a new study using computer modeling to estimate the actual amount of flesh needed to cover the skeletons of dinosaurs. Based on a comparison with modern animals, it indicates that these animals could have weighed dramatically less than has been previously estimated. "A huge Brachiosaur, once thought to weigh 176,370 pounds, is now believed to have weighed 50,706 pounds." That's only about two-and-a-half times the weight of a modern African elephant. If other evidence can be reconciled with this, many estimates of the ecosystems dinosaurs lived in will also have to be revised.
