Skip to content
I T S S
  • Welcome
  • Hardware
  • Internet
  • Networking
  • Security
  • Data Recovery
  • Support
  • Contact
  • Webmail

pfSense / Wireguard / Bad Code / Close Call

By itss | 26/03/2021
0 Comment

A nice write-up of how a whole bunch of bad code very nearly ended up in FreeBSD 13 due to several bad calls on the part of pfSense. https://arstechnica.com/gadgets/2021/03/buffer-overruns-license-violations-and-bad-code-freebsd-13s-close-call/

Category: Technology
Post navigation
← Apple Continues Its Trip To The Dark Side With The Release of MacOS 17 (Big Sur) A Nice Little Cryptography Primer →

Recent Posts

  • Hardware Exploits?
  • Why Quake3 was so fast : Fast Inverse Square Root
  • A Nice Little Cryptography Primer
  • pfSense / Wireguard / Bad Code / Close Call
  • Apple Continues Its Trip To The Dark Side With The Release of MacOS 17 (Big Sur)

Slashdot

News for nerds

  • Retina Scan for Diabetes Could Also Reduce Deaths During Pregnancy in Developing Countries
    by EditorDavid on 02/05/2026 at 4:34 pm

    This week Bill Gates wrote a blog post about a special camera from medtech startup Remidio, which delivers high-resolution images of a patient's retina in seconds. The camera plugs into a phone running an AI system that watches for early signs of diabetes — all without needing a blood draw, eye dilation, or a dibetes specialist. It's already been used in 40 countries for more than 15 million patients. But that same hardware, with different software, can also flag the conditions that drive so many dangerous pregnancies. Gestational diabetes sharply increases the risk of pre-eclampsia [a spike in blood pressure during pregnancy responsible for half a million fetal deaths every year and 70,000 maternal deaths]... In most of rural sub-Saharan Africa or South Asia, it usually isn't screened for at all, because the standard test requires a lab. A retinal scan offers a different way in. Remidio's device is currently being used in India to screen pregnant women for conditions that drive stillbirth. And researchers are now adapting the same hardware to screen for anemia and hypertension, too... [S]mall, portable, affordable diagnostics in the hands of community health workers are exactly the kind of lever that can start to move a number that hasn't moved in a long time. Read more of this story at Slashdot.

  • Linux Percentage of Steam Users Doubled in One Year
    by EditorDavid on 02/05/2026 at 3:34 pm

    Steam on Linux use in March "had skyrocketed to 5.33%..." reports Phoronix, "easily the highest level we've seen Steam on Linux at since its inception more than a decade ago." So what happened in April? [April's results] point to Linux having a 4.52% marketshare on Steam, a drop of 0.81% compared to March. Year-over-year it's roughly double with Steam on Linux in April 2025 being at 2.27%. Or two years ago for April 2024, Steam on Linux was at 1.9%. Read more of this story at Slashdot.

  • Marvel, DC, Game Publishers Launch Rival Events Saturday for Free Giveaways
    by EditorDavid on 02/05/2026 at 2:34 pm

    The once-a-year free comic book giveaway "is splitting in two," according to a local news report. Launched in 2002 by Diamond Comic Distributor, comic book giants like Marvel and DC have historically participated together. But things changed after Diamond Comic Distributors went bankrupt in 2025, "leaving other companies to swoop in and pick up where Diamond left off." The rights to the "Free Comic Book Day" brand were sold to Universal Distribution, which plans to bring Free Comic Book Day back on Saturday. On the same day, Penguin Random House plans to launch a rival event called Comics Giveaway Day. This means you'll still get plenty of free comics, but this time they will be separated, with some coming under the Free Comic Book Day branding and others arriving under the Comics Giveaway Day branding. Free Comic Book Day will include publishers like DC, Image, Dynamite and Archie Comics. Comics Giveaway Day will include publishers such as Marvel, Dark Horse, Boom! Studios and Tokyopop... The other big change coming this year is the introduction of game publishers Wizards of the Coast and Upper Deck to the lineup, as part of Universal Distribution's Free Comic Book Day. Wizards of the Coast is known for its tabletop role-playing game Dungeons & Dragons, as well as its trading card game Magic: The Gathering. Upper Deck is best known for its sports trading cards and entertainment collectibles, along with deck-building games like the Legendary series... In addition to adding these game makers, Universal plans to expand Free Comic Book Day to include what are colloquially referred to as your friendly local game stores. Marvel's offerings this year include a special Alien, Predator & Planet of the Apes one-shot, while D.C. is offering the first chapter of their upcoming graphic novel Aquamanatee. Other comics include Avatar: The Last Airbender — Legends from Dark Horse Comics and Sonic the Hedgehog from IDW Publishing. Read more of this story at Slashdot.

  • GameStop Is Preparing Offer For eBay
    by BeauHD on 02/05/2026 at 11:00 am

    GameStop is reportedly preparing a potential offer for eBay, an unusually ambitious move given that eBay's roughly $46 billion market value is nearly four times GameStop's. Reuters reports: GameStop is preparing an offer for eBay as CEO Ryan Cohen pursues plans to boost the struggling videogame retailer's market value more than tenfold, the Wall Street Journal reported on Friday. Shares of eBay, which has a market capitalization of about $46 billion, soared about 14% in extended trading. GameStop gained 4%. The company has a market value of nearly $12 billion. GameStop has been quietly building a stake in eBay's shares ahead of a potential offer, the report said, citing people familiar with the matter. If eBay is not receptive, Cohen could decide to take the offer directly to the e-commerce company's shareholders, the Journal said. Read more of this story at Slashdot.

  • New Lithium-Plasma Engine Passes Key Mars Propulsion Test
    by BeauHD on 02/05/2026 at 7:00 am

    NASA engineers have tested a next-generation lithium-plasma electric propulsion system that reached 120 kilowatts, a new U.S. record and about 25 times the power of the electric thrusters on NASA's Psyche spacecraft. "Designing and building these thrusters over the last couple of years has been a long lead-up to this first test," said James Polk, who is a senior research scientist at NASA Jet Propulsion Laboratory. "It's a huge moment for us because we not only showed the thruster works, but we also hit the power levels we were targeting. And we know we have a good testbed to begin addressing the challenges to scaling up." Universe Today reports: While 120 kilowatts is a new record, NASA estimates it a future human mission to Mars will require 2 to 4 megawatts of power consisting of several thrusters and requiring more than 23,000 hours (958 days/2.6 years) of operation. To accomplish this, the thrusters would have to withstand more than 2,800 degrees Celsius (5,000 degrees Fahrenheit), which the thrusters achieved during testing. The reason for the extended operation is due to the estimated time of an entire human mission to Mars, which is estimated to be approximately 2.6 years. This is because the launch window to Mars only opens once every two years due to the orbital behaviors of both planets. While no mission has ever returned from the Red Planet, this same launch window works from Mars to Earth, too. When launched within this window, robotic spacecraft have traditionally taken approximately 6-7 months to reach Mars. However, a human mission would require a much larger spacecraft to accommodate the astronauts, food, fuel, water, and other mission-essential items. For the approximate 2.6-year mission, this would entail approximately 6-9 months traveling to Mars, followed by approximately 18 months on the surface of Mars until the next launch window opens, then another approximate 6-9 months back to Earth. However, having much less fuel due to the electric propulsion system could potentially alter this timeframe. Read more of this story at Slashdot.

  • Amazon Stuck With Months of Repairs After Drone Strikes On Data Centers
    by BeauHD on 02/05/2026 at 3:30 am

    An anonymous reader quotes a report from Ars Technica: Amazon's cloud customers will need to wait several more months before the US tech company can repair war-damaged data centers and restore normal operations in the Middle East. The announcement comes two months after Iranian drone strikes targeted three Amazon data centers in the United Arab Emirates and Bahrain -- meaning that full recovery from the cloud disruption could take nearly half a year in all. The Amazon Web Services (AWS) dashboard posted an April 30 update describing how its UAE and Bahrain cloud regions "suffered damage as a result of the conflict in the Middle East" and are unable to support customer applications. The update also said that "relevant billing operations are currently suspended while we restore normal operations" in a process that "is expected to take several months." That wording suggests Amazon will continue to avoid billing AWS customers in the affected regions -- ME-CENTRAL-1 and ME-SOUTH-1 -- after it initially waived all usage-related charges for March 2026 at an estimated cost of $150 million. AWS also "strongly" recommended that customers migrate resources to other cloud regions and rely on remote backups to restore any "inaccessible resources." Some customers, such as the Dubai-based super app Careem—which offers ride-hailing, household services, and food and grocery delivery -- were able to get back online quickly after doing an overnight migration to other data center servers. Read more of this story at Slashdot.

Archives

  • September 2022
  • November 2021
  • June 2021
  • March 2021
  • November 2020
  • October 2020
  • September 2020
  • February 2020
  • January 2020
  • October 2019
  • August 2018
  • July 2018
  • April 2018
  • February 2018
  • January 2018
  • December 2017
  • October 2017
  • September 2017
  • August 2016
  • July 2016
  • March 2016
  • February 2016
  • August 2015
  • May 2015

Categories

  • Innovation
  • Security
  • Software
  • Technology

Tags

backdoor cisco coding json laziness patterns public information announcement security vulnerability
© 2017 IT Sales & Services Ltd
Quality IT solutions in Tanzania since 2010
Iconic One Theme | Powered by Wordpress