Feed aggregator

Article URL: https://blog.cloudflare.com/migrating-billions-of-records-moving-our-active-dns-database-while-in-use/

Comments URL: https://news.ycombinator.com/item?id=41983486

Points: 5

# Comments: 0

Apple has released security patches for most of its operating systems, including iOS, Mac, iPadOS and watchOS.

Especially important are the updates for iOS and iPadOS which tackle vulnerabilities which could potentially leak sensitive user information. You should make sure you update as soon as you can.

To check if you’re using the latest software version, go to Settings > General > Software Update. It’s also worth turning on Automatic Updates if you haven’t already, which you can do on the same screen.

Update options Technical details

Noteworthy are four vulnerabilities in Siri and another vulnerability in Accessibility which would allow an attacker with physical access to view sensitive user information. This may not seem very urgent at first, but if your device gets stolen then the thief can learn things about you which is far from ideal.

These are some of the vulnerabilities that jumped out at us.

CVE-2024-44274: a vulnerability in Accessibility that could allow an attacker with physical access to a locked device to view sensitive user information. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1, iOS 18.1 and iPadOS 18.1 with improved authentication.

CVE-2024-44282: a vulnerability in Foundation where parsing a file could lead to disclosure of user information. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1 by improved input validation. Foundation serves as a fundamental framework that offers a base layer of functionality for Apple’s operating systems. Among others it’s responsible for file system access.

CVE-2024-40867: a vulnerability in iTunes caused by a custom URL scheme handling issue that could be used by an attacker to break out of Web Content sandbox. This issue is fixed in iOS 18.1 and iPadOS 18.1 by improved input validation. Breaking out of the Web Content sandbox allows a malicious website or attacker to potentially access sensitive data, control other parts of the system, and compromise the overall security of the device beyond the intended limitations of the web browser.

We don’t just report on phone security—we provide it

Cybersecurity risks should never spread beyond a headline. Keep threats off your mobile devices by downloading Malwarebytes for iOS, and Malwarebytes for Android today.

Want the best tea to help you relax and get a restful sleep? Here are CNET's picks for the best caffeine-free herbal teas.

Sealy’s Cocoon Chill Hybrid is a budget-friendly, active-cooling mattress suited for all body types. Here’s what to know before buying.

These smart tips can help you have a happy holiday and keep your wallet happy.

Weighted vests may look like they’re a blast from the past, but their practicality is timeless.

Smart plugs can handle a lot for our homes, but they aren’t as durable as your home’s hard-wired outlets.

Make the most of this deal and snag the Arlo video doorbell at its lowest ever price.

Article URL: https://www.livescience.com/physics-mathematics/mathematics/high-school-students-who-came-up-with-impossible-proof-of-pythagorean-theorem-discover-9-more-solutions-to-the-problem

Comments URL: https://news.ycombinator.com/item?id=41983196

Points: 1

# Comments: 0

Article URL: https://www.theguardian.com/technology/2024/oct/28/microsoft-excels-bloopers-reel-40-years-of-spreadsheet-errors

Comments URL: https://news.ycombinator.com/item?id=41983194

Points: 1

# Comments: 0

Article URL: https://github.com/paradedb/pg_analytics

Comments URL: https://news.ycombinator.com/item?id=41983166

Points: 1

# Comments: 0

Article URL: https://blogs.microsoft.com/on-the-issues/2024/10/28/googles-shadow-campaigns/

Comments URL: https://news.ycombinator.com/item?id=41983165

Points: 1

# Comments: 0

Article URL: https://aeon.co/essays/without-chaos-theory-social-science-will-never-understand-the-world

Comments URL: https://news.ycombinator.com/item?id=41983164

Points: 1

# Comments: 0

Article URL: https://lp.jetbrains.com/plugin-dev-conf-2024/

Comments URL: https://news.ycombinator.com/item?id=41983157

Points: 1

# Comments: 0

Article URL: https://textcasting.org

Comments URL: https://news.ycombinator.com/item?id=41983156

Points: 1

# Comments: 0

Article URL: https://www.jordanwhited.com/posts/wireguard-endpoint-discovery-nat-traversal/

Comments URL: https://news.ycombinator.com/item?id=41983144

Points: 1

# Comments: 0

Article URL: https://github.com/emarsden/pgmacs

Comments URL: https://news.ycombinator.com/item?id=41983131

Points: 1

# Comments: 0