bug   18193

« earlier    

macOS May Lose Data Due to APFS Filesystem Bug
Under certain conditions, macOS may copy data into the void, leading to data loss of important files, all due to a bug in how the operating system handles APFS sparse disk images.
The issue was discovered and reported to Apple this past week by Mike Bombich, the creator of a Mac backup application named Carbon Copy Cloner.
Bug affects only APFS sparse disk image files
Bombich says the bug affects only "sparse disk images" formatted in Apple's new filesystem format APFS, first deployed macOS High Sierra in March 2017.
A "disk image" is a file format that contains the entire contents and structure of a disk volume, such as USB, CD, DVD, hard disk drive, or network share.
Many Mac applications utilize disk images, especially backup software, allowing users to create copies of other volumes and quickly move files in and out of an older backup image at a later date.
A "sparse" disk image is a type of disk image file that can grow as the user adds more data to it. But sparse image disks can only go as far as the underlying storage medium permits, and they will show a free space available value, depending on the free space that remains on the underlying hard drive.
macOS  10.13  bug  APFS  backup  security  privacy  data 
5 days ago by rgl7194
macOS may lose data on APFS-formatted disk images | Carbon Copy Cloner | Bombich Software
Until Apple resolves this disk images bug, we strongly recommend that people avoid using APFS-formatted sparse disk images for any purpose with any application.
Join our mailing list

Your email
apfs  bug 
6 days ago by euler
A new iOS bug can crash iPhones and disable access to iMessages • The Verge
Tom Warren:
<p>The bug itself involves sending an Indian language (Telugu) character to devices, and Apple’s iOS Springboard will crash once the message has been received. Messages will no longer open as the app is trying and failing to load the character, and it appears that the only way to regain access to your iMessages is to have another friend send you a message and try to delete the thread that contained the bad character.

We’ve also tested the bug on third-party apps like Facebook Messenger, WhatsApp, Gmail, and Outlook for iOS and found that these apps can become disabled once a message is received. It might be difficult to fix and delete the problem message for apps like WhatsApp, unless you have web access enabled. Telegram and Skype appear to be unaffected. The public beta version of iOS 11.3 is also unaffected. It appears Apple was made aware of the problem at least three days ago, and <a href="https://www.theverge.com/2018/2/15/17015654/apple-iphone-crash-ios-11-bug-imessage">plans to address it in an iOS update soon</a>.</p>

Let's hope soon is "very soon". Though it's clear that iMessage has real challenges when it come to rendering text - moreso, it seems, than any other app. Why?
Ios  text  bug  imessage 
8 days ago by charlesarthur
Microsoft’s compiler-level Spectre fix shows how hard this problem will be to solve | Ars Technica
Investigation of Microsoft's compiler changes show that much of the time, they won't fix Spectre.
The Meltdown and Spectre attacks that use processor speculative execution to leak sensitive information have resulted in a wide range of software changes to try to limit the scope for harm. Many of these are operating system-level fixes, some of which depend on processor microcode updates.
But Spectre isn't a simple attack to solve; operating system changes help a great deal, but application-level changes are also needed. Apple has talked about some of the updates it has made to the WebKit rendering engine, used in its Safari browser, but this is only a single application.
Microsoft is offering a compiler-level change for Spectre. The "Spectre" label actually covers two different attacks. The one that Microsoft's compiler is addressing, known as "variant 1," concerns checking the size of an array: before accessing the Nth element of an array, code should check that the array has at least N elements in it. Programmers using languages like C and C++ often have to write these checks explicitly. Other languages, like JavaScript and Java, perform them automatically. Either way, the test has to be done; attempts to access array members that don't exist are a whole class of bugs all on their own.
browser  bug  cpu  javascript  linux  mac  malware  meltdown_spectre  privacy  security  windows 
9 days ago by rgl7194
[MSYS-692] Fix issue with PowerShell function buffer by TheLunaticScripter · Pull Request #6664 · chef/chef
chef - A systems integration framework, built to bring the benefits of configuration management to your entire infrastructure.
chef  windows  powershell  bug 
9 days ago by neurodyne
Creality CR-10S C4 Capacitor DIY Fix Tutorial – Jozerworx
The CR-10S printer community has recently been roved by the announcement of a problem the circuit board which may cause a reduction in print quality, reduce the lifetime of the printer, or even make the printer unsafe.  This post will not dive into technical details (which can be found elsewhere), but the problem stems from the use of an undersized capacitor in the 5V power circuit.  This results in poor quality power being delivered to the microprocessor.  The immediately noticeable impact of the problem is very noisy temperature readings.  In the long term, the poor quality power regulation may damage the printer.

I did not discover this issue, nor did I uncover the correct fix.  There is a lot of information floating around out there about potential fixes, much of it out of date or incorrect.  At least one source for a correct, working fix is available, however they are charging money to perform the fix and not making the directions/parts for the fix freely available.

This tutorial post documents one working method to fix your own printer.  This is not the only fix possible.  For those who are comfortable with a soldering iron, but don’t have the background in electrical engineering to design your own fix, this is for you.
cr10s  cr-10s  capacitor  flaw  bug  issue  fix  desolder  soldering  circuit  board  temperature  fluctuation  unstable  clean  power  regulation  readings 
10 days ago by 44sunsets
Multiple Linux Distributions Affected By Crippling Bug In Systemd - Slashdot
System administrator Andrew Ayer has discovered a potentially critical bug in systemd which can bring a vulnerable Linux server to its knees with one command. "After running this command, PID 1 is hung in the pause system call. You can no longer start and stop daemons. inetd-style services no longer accept connections. You cannot cleanly reboot the system." According to the bug report, Debian, Ubuntu, and CentOS are among the distros susceptible to various levels of resource exhaustion. The bug, which has existed for more than two years, does not require root access to exploit.
linux  bug  distro  systemd  slashdot 
10 days ago by gardencat
We May Soon See Malware Leveraging the Meltdown and Spectre Vulnerabilities
Security researchers are seeing an ever-increasing number of suspicious file samples that are experimenting with the Meltdown and Spectre vulnerabilities.
According to experts at AV-TEST, Fortinet, and Minerva Labs, several individuals are experimenting with publicly released proof-of-concept (PoC) code for the Meltdown (CVE-2017-5754) and Spectre (CVE-2017-5715, CVE-2017-5753) vulnerabilities.
Researchers from AV-TEST have detected 139 suspicious file samples that are related to the aforementioned CPU vulnerabilities.
browser  bug  cpu  javascript  linux  mac  meltdown_spectre  privacy  security  windows  malware 
15 days ago by rgl7194
Meltdown/Specter-based Malware Coming Soon to Devices Near You, Are You Ready?
It has been few weeks since the details of the Spectre, and Meltdown processor vulnerabilities came out in public and researchers have discovered more than 130 malware samples trying to exploit these chip flaws.
Spectre and Meltdown are security vulnerabilities disclosed by security researchers earlier this month in many processors from Intel, ARM and AMD used in modern PCs, servers and smartphones, among other devices.
These CPU vulnerabilities could enable attackers to bypass memory isolation mechanisms and access everything, including memory allocated for the kernel containing sensitive data like passwords, encryption keys and other private information.
browser  bug  cpu  javascript  linux  mac  meltdown_spectre  privacy  security  windows 
15 days ago by rgl7194
Intel Releases Fixed Skylake Microcodes For Spectre Vulnerability to OEMs
Intel announced yesterday that they have released updated microcodes for Skylake-based processors to OEMS and other partners that resolve the unpredictable behavior and reboots related to Spectre mitigation. On January 27th, Intel stated that they had discovered the cause of the reboots and have since been able to do so in other platforms.
This updated microcode was released for Skylake U, Y, U23e, H, & S CPUs, but is not currently available to the public. Instead of publicly releasing it, Intel has made it available to OEM customers and industry partners to that they can extensively test it before making it openly available.
In this updated advisory, Intel continues to advise customers not to install the currently available microcode as it will cause system instability.
browser  bug  cpu  javascript  linux  mac  meltdown_spectre  privacy  security  windows 
15 days ago by rgl7194

« earlier    

related tags

&  10.11  10.12  10.13  10.6  6.5  a...  a  addon  adwords  amd  and  anki  another  apfs  apple  apps  are  article  attachments  aws  backup  beat  beetle  bestpractices  bittorrent  blank  blizzard  blocksize  board  bomb  bounty  browser  bugs  bugtracker  cache  calculation  capacitor  cart-data  cart  chef  china  chrome  circuit  clean  cli  code  computation  computer  computing  cookies  correction  correctness  cpu  cr-10s  cr10s  cryptocurrency  daring_fireball  data  dba  desolder  dev  development  digital  distro  downloads  dpi  drive  eca  engineering  errormessage  esxi  evolution  exploit  extension  factorio  feature  feedback  firefox  fix  flaw  floatingpoint  fluctuation  for  freenas  from  google  guitar  hack  hard  hardware  hazelcast  history  how.to  howto  image  imessage  importexport  income  insect  intel  ios  iphone  iphones  is  iscsi  issue  it  jason  javascript  jm  keyboard  keyword  latest  learning  like  limbo  linux  loop  lun  mac  machine  macos  macosxhints  magento2  magnet  malware  maps  marketing  matches  meltdown  meltdown_spectre  messaging  messenger  messing  microsoft  mysql  mysqlworkbench  nap  needshelp  network  nord  not  number  occusion  on  openfire  osx  outlook  pack  packed  paper  partition  pedal  physical  pigtronix  power  powershell  prefs  privacy  problem  program  project-management  proposal  python  quinlan  random  readings  regulation  reinforcement  report  reporting  research  rocketry  searchcap:  security  seo  sketch  skype  slashdot  software  software_engineering  soldering  some  sounds  spectre  ssm  starting  struct  structs  supported  swift  sysadmin  system  systemd  techcrunch  temperature  test  testing  text  the  there's  tips  to...  tolerance  tools  tracking  tricks  trolls  tutorial  twitter  unstable  up  users  using  vagrant  video-games  vimeo.  vimeo  vmware  vsphere  vulnerability  war  warfare  watchthisspace  weapon  weaponry  web-design  web-dev  webdev  webextension  windows  windows7  workaround  wow  x  xbmc  yunnan  |   

Copy this bookmark: