Experimental News Clipping Site

Tag: memory safety

  • Schneier on Security: Apple’s New Memory Integrity Enforcement

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/09/apples-new-memory-integrity-enforcement.html Source: Schneier on Security Title: Apple’s New Memory Integrity Enforcement Feedly Summary: Apple has introduced a new hardware/software security feature in the iPhone 17: “Memory Integrity Enforcement,” targeting the memory safety vulnerabilities that spyware products like Pegasus tend to use to get unauthorized system access. From Wired: In recent years, a movement…

  • Slashdot: Apple Claims ‘Most Significant Upgrade to Memory Safety’ in OS History

    by

    Kurt Seifried
    in

    Source URL: https://apple.slashdot.org/story/25/09/14/228211/apple-claims-most-significant-upgrade-to-memory-safety-in-os-history?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Apple Claims ‘Most Significant Upgrade to Memory Safety’ in OS History Feedly Summary: AI Summary and Description: Yes Summary: Apple has introduced a groundbreaking security feature called Memory Integrity Enforcement (MIE) in its latest devices, which significantly enhances memory safety and aims to defend against sophisticated spyware attacks. This…

  • Simon Willison’s Weblog: Chromium Docs: The Rule Of 2

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/Aug/11/the-rule-of-2/ Source: Simon Willison’s Weblog Title: Chromium Docs: The Rule Of 2 Feedly Summary: Chromium Docs: The Rule Of 2 Alex Russell pointed me to this principle in the Chromium security documentation as similar to my description of the lethal trifecta. First added in 2019, the Chromium guideline states: When you write code…

  • Slashdot: New NSA/CISA Report Again Urges the Use of Memory-Safe Programming Language

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/06/29/1956256/new-nsacisa-report-again-urges-the-use-of-memory-safe-programming-language?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: New NSA/CISA Report Again Urges the Use of Memory-Safe Programming Language Feedly Summary: AI Summary and Description: Yes Summary: The report from CISA and NSA emphasizes the critical importance of adopting memory-safe programming languages to enhance software security and reduce vulnerabilities. It outlines both the benefits and challenges associated…

  • Microsoft Security Blog: Unveiling RIFT: Enhancing Rust malware analysis through pattern matching

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/06/27/unveiling-rift-enhancing-rust-malware-analysis-through-pattern-matching/ Source: Microsoft Security Blog Title: Unveiling RIFT: Enhancing Rust malware analysis through pattern matching Feedly Summary: Threat actors are adopting Rust for malware development. RIFT, an open-source tool, helps reverse engineers analyze Rust malware, solving challenges in the security industry. The post Unveiling RIFT: Enhancing Rust malware analysis through pattern matching appeared…

  • Slashdot: ‘Rust is So Good You Can Get Paid $20K to Make It as Fast as C’

    by

    Kurt Seifried
    in

    Source URL: https://developers.slashdot.org/story/25/05/18/0257255/rust-is-so-good-you-can-get-paid-20k-to-make-it-as-fast-as-c?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: ‘Rust is So Good You Can Get Paid $20K to Make It as Fast as C’ Feedly Summary: AI Summary and Description: Yes Summary: The Prossimo project aims to enhance Internet security through the development of the rav1d AV1 decoder using Rust, which focuses on memory safety. While the…

  • The Register: Sudo-rs make me a sandwich, hold the buffer overflows

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/05/08/ubuntu_2510_makes_rusk_sudo_default/ Source: The Register Title: Sudo-rs make me a sandwich, hold the buffer overflows Feedly Summary: Ubuntu 25.10 fitted with Rust-written admin tool by default for memory safety’s sake Canonical’s Ubuntu 25.10 is set to make sudo-rs, a Rust-based rework of the classic sudo utility, the default – part of a push to…

  • Slashdot: Memory-Safe Sudo To Become the Default In Ubuntu

    by

    Kurt Seifried
    in

    Source URL: https://news.slashdot.org/story/25/05/06/213254/memory-safe-sudo-to-become-the-default-in-ubuntu?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Memory-Safe Sudo To Become the Default In Ubuntu Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the adoption of sudo-rs, a memory-safe implementation of the sudo utility, by Ubuntu 25.10. This move signifies an important step in enhancing the security and resilience of system software, particularly…

  • Hacker News: Taming the UB Monsters in C++

    by

    Kurt Seifried
    in

    Source URL: https://herbsutter.com/2025/03/30/crate-training-tiamat-un-calling-cthulhutaming-the-ub-monsters-in-c/ Source: Hacker News Title: Taming the UB Monsters in C++ Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The provided text discusses significant ongoing improvements in the C++ programming language pertaining to software security and undefined behavior (UB). It highlights efforts to enhance C++ by addressing critical vulnerabilities that can lead…