Articles about bugs

Silk road adviser caught, Kaspersky sues Dutch paper, and Vietnam's tech clampdown

Roundup This week included a big Patch Tuesday bundle, a fresh fine for Yahoo!, and yet another Intel bug that potentially exposes sensitive kernel information. Here are a few of the other security stories that broke this week. Kaspersky hungry for some Dutch crunch Eugene Kaspersky says he's sick of bad news coverage, and he's …
Shaun Nichols, 16 Jun 2018
Cats eyes behind a zip

Loose .zips sink chips: How poisoned archives can hack your computer

Video Booby-trapped archive files can exploit vulnerabilities in a swath of software to overwrite documents and data elsewhere on a computer's file system – and potentially execute malicious code. Specifically, the flaws, dubbed "Zip Slip" by its discoverers at security outfit Snyk, are path traversals that can potentially be …
Shaun Nichols, 5 Jun 2018

Ubuntu 17.10 pulled: Linux OS knackers laptop BIOSes, Intel kernel driver fingered

Updated Canonical has halted downloads of Ubuntu Linux 17.10, aka Artful Aardvark, from its website after punters complained installing the open-source OS on laptops knackered the machines. Specifically, the desktop flavor of Artful Aardvark, released in October, has been temporarily pulled – the server builds and other editions …

Apple sprays down bug-ridden iOS 11 with more fixes

Apple has posted an update to address a host of bugs in its iOS mobile software. The iOS 11.2 update patches both security and stability bugs in the iPad/iPhone firmware. It will also improve the wireless charging for new iPhones and add a payments feature to Siri and Messages, Apple promises. The bugs addressed in iOS 11.2 …
Shaun Nichols, 4 Dec 2017

Pro tip: You can log into macOS High Sierra as root with no password

Updated A trivial-to-exploit flaw in macOS High Sierra, aka macOS 10.13, allows users to gain admin rights, or log in as root, without a password. The security bug can be triggered via the authentication dialog box in Apple's operating system, which prompts you for an administrator's username and password when you need to do stuff …
Shaun Nichols, 28 Nov 2017
DNS toolkit

Open source nameserver used by millions needs patching

Open source DNS software vendor PowerDNS has advised users to patch its "Authoritative" and "Recursor" products, to squish five bugs disclosed today. None of the bugs pose a risk that PowerDNS might itself be compromised, but this is the DNS: what an attacker can do is fool around with DNS records in various ways. That can be …
Sleeping man on couch with a beer , popcorn and a food-stained vest. Photo by Shutterstock

Mi casa es su casa: Ubuntu bug makes 'guests' anything but

Recent versions of the Ubuntu Linux distro fail to limit system access for guest accounts. This according to developer Tyler Hicks, who reported a bug that allows guest users to roam free of the confines expected to be placed on system access for guests. Ideally, guest users should be restricted to a small temporary …
Shaun Nichols, 19 May 2017

Today's bonkers bug report: Microsoft Edge can't print numbers

Microsoft's Edge browser is the subject of an amusing new bug report, alleging it somehow manages to screw up printing strings of numbers. The report on Microsoft's developer portal describes the issue where PDF files printed through Edge will display numbers and text incorrectly when exported. "Edge displays PDF correctly …
Shaun Nichols, 5 May 2017
psycho

LastPass scrambles to fix another major flaw – once again spotted by Google's bugfinders

For most of us, Saturday morning is a time for a lie in, a leisurely brunch, or maybe taking the kids to the park. But for some it's bug-hunting time. Tavis Ormandy, a member of Google's crack Project Zero security team, was in the shower and thinking about LastPass – after finding a number of flaws in the password manager …
Iain Thomson, 27 Mar 2017

As Microsoft touts Windows Insider for biz, let's take a look at W10's broken 2FA logins

For months now, the Windows 10 Anniversary Update has broken two-factor logins using certain smart cards – and Microsoft has refused to discuss it. According to Reg readers writing in, and W10 users on support forums, folks who have Yubikey two-factor authentication gadgets have been hitting frustrating error messages when …
Shaun Nichols, 16 Feb 2017

Dirty COW explained: Get a moooo-ve on and patch Linux root hole

Code dive Patch your Linux-powered systems, phones and gadgets as soon as possible, if you can, to kill off a kernel-level flaw affecting nearly every distro of the open-source operating system. Dubbed Dirty COW, the privilege-escalation vulnerability potentially allows any installed application, or malicious code smuggled onto a box, …
Shaun Nichols, 21 Oct 2016

Is Apple's software getting worse or what?

Comment For over a year, Apple's software has been the subject of more derision than might be expected for a company of its size. Developer Marco Arment took Apple to task early last year, arguing that OS X (recently rebranded macOS) is full of embarrassing bugs and that the company is trying to do too much on unrealistic deadlines. …
gold abacus via shutterstock

Eurocrats to pore over Apache, KeePass code

The Apache HTTP server and KeePass password manager are to get a free code audit, courtesy of a pilot European Commission project. The EC-FOSSA (free and open source software auditing project) pilot was conceived by the European parliament in 2014, and given €1 million to work with. As well as code audits, it's got the …
A Handful of Giant Weta by Mike Locke

US government tells Apple it has security problems that Apple fixed last year

Two years after the White House decided disclosure was better than bug-hoarding, the FBI has handed over its first notification to Apple. News of the bug report was given to Reuters, which says notifications describing the iPhone and Mac problems landed in Cupertino on April 14. The White House policy was articulated at the …

Irish researchers sweep smartphones clear of super bugs

A team of Irish scientists has developed a way to neutralise that threatening sump of biological mayhem you just can’t leave home without - the mobile phone. Happily the nano-technology can also be turned on to lesser sources of harmful bacteria such as children’s toys, kitchen worktops, TV remotes and toilet. A team led by …
Joe Fay, 22 Apr 2016
Apple iPad 3 aka new iPad

iPad bricked by iOS 9.3? Don't worry, we'll get through this together

Updated Earlier this week, word broke of a bug in Apple's iOS 9.3 update that was leaving some iPad 2 tablets unable to function. We asked Reg readers if they had experienced this problem, and the responses came pouring in, along with tips for workarounds that at least let you use your iPad until Apple can come up with a fix. So, we' …
Shaun Nichols, 24 Mar 2016
android_toys_648

Google plugs Android vulns

Five "critical," four "high" severity and one merely "moderate" bug make up the menu of Android security patches, which are now available for Nexus devices and will flow through to myriad other devices when it rains up instead of down. The critical bugs relate to Broadcom and Qualcomm WiFi drivers, Android's Mediaserver, …

You've seen things people wouldn't believe – so tell us your programming horrors

Line break Shellshock. Heartbleed. That CCTV storage firmware with a hardcoded password. We've all seen some really bad code. Maybe that's just me. Given that many of our sysadmin readers have poured in tales of fixing impossibly broken servers for our On-Call series, we know our software-wrangling readers have faced similar battles …
Chris Williams, 28 Jan 2016

Create a news alert about bugs, or find more stories about bugs.

Biting the hand that feeds IT © 1998–2018