Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Vulnerability in firmware of MediaTek DSP chips used in many smartphones - itsfoss.net

    Researchers from Checkpoint have identified three vulnerabilities (CVE-2021-0661, CVE-2021-0662, CVE-2021-0663) in the firmware of MediaTek DSP chips, as well as a vulnerability in the MediaTek Audio HAL audio processing layer (CVE-2021- 0673). In case of successful exploitation of vulnerabilities, an attacker can organize eavesdropping on the user from an unprivileged application for the Android platform.

    In 2021, MediaTek accounts for approximately 37% of shipments of specialized chips for smartphones and SoCs (according to other data, in the second quarter of 2021, MediaTek’s share among manufacturers of DSP chips for smartphones was 43%). Among other things, MediaTek DSP chips are used in flagship smartphones by Xiaomi, Oppo, Realme and Vivo. MediaTek chips, based on the Tensilica Xtensa microprocessor, are used in smartphones to perform operations such as processing sound, images and video, in computing for augmented reality systems, computer vision and machine learning, as well as implementing fast charging.

  • CronRAT: A New Linux Malware That's Scheduled to Run on February 31st [Ed: This is not about "Linux" and Linux isn't how or why this malware gets on systems in the first place]

    Researchers have unearthed a new remote access trojan (RAT) for Linux that employs a never-before-seen stealth technique that involves masking its malicious actions by scheduling them for execution on February 31st, a non-existent calendar day.

    Dubbed CronRAT, the sneaky malware "enables server-side Magecart data theft which bypasses browser-based security solutions," Sansec Threat Research said. The Dutch cybersecurity firm said it found samples of the RAT on several online stores, including an unnamed country's largest outlet.

  • Unexpected database server downtime, affecting bugs, forums, wiki

    Due to an unexpected breakage on our database servers, several Gentoo websites are currently down. In particular, this includes Forums, Wiki, and Bugzilla. Please visit our Infrastructure status page for real-time monitoring and eventual outage notices.

More in Tux Machines

Garuda Linux: An Arch-Based Linux Distro Built for Speed and Beauty

Garuda Linux is not your regular Arch-based distro. It transforms Linux, especially Arch, into a user-friendly operating system for newcomers. Garuda Linux is an Arch-based distribution that makes Linux installation and setup easy while maintaining the stripped-down, high-performance OS model that Arch is known for. Of all the Linux distros that strive to make it easier to install Arch, Garuda is quite possibly the one that comes closest to the spirit and intent of its upstream parent. Garuda is the perfect distribution for those who want absolute, granular control over what is installed on their system but don’t have the time or technical knowledge necessary to successfully navigate the notoriously complex installation procedure of Arch Linux. Read more

Why It Is Better To Program On Linux

You have probably heard a lot of times that it is better to program on Linux, and programmers use it more often than Windows. Of course, operating systems based on Linux kernel are free and open-source. This is a huge advantage compared to Windows, but what are the important benefits of programming? An open-source system does not help if you are a web programmer. However many programmers prefer Linux. In this article, https://jatapp.com/ web developers will explain why to program on Linux. Read more

5 Best Free and Open Source Subtitle Downloaders

A subtitle is a text representation of the dialogue, narration, music, or sound effects in a video file. Subtitles are available in multiple formats. Subtitles can literally make the difference between being immersed in a movie or only watching the screen, trying to keep up with developments. Good subtitling does not distract but actually enhances viewing pleasure, and even native speakers can find subtitles useful, not only where the individual is hearing-impaired. Read more

Best Free and Open Source Alternatives to Atlassian Confluence

Atlassian Corporation Plc is a software company founded in 2002 that develops products for software developers, project managers and other software development teams. It employs over 7,000 people and is headquartered in Sydney, Australia. Atlassian’s range of proprietary software includes software for collaboration, development, and issue tracking software for teams. Atlassian dominates several markets where it still has intense competition. Read more