New 'Looney Tunables' Linux bug gives root on major distros

Joe Klemmer@lemmy.myserv.one to Linux@lemmy.ml – 256 points –
bleepingcomputer.com

From BeepingComputer.

42

You are viewing a single comment

Didn't Microsoft do a study on security vulnerabilities and found that the overwhelmingly number of bugs was due to memory management?

That was the what I was thinking of when I wrote the comment. The CTO of Azure also said that he deems C++ in it’s entirety to be deprecated. I felt it was an exaggeration at first but I’ve started to agree with him recently.

Google also noticed a 33% decrease in Google Home crashes caused by NullPointerExceptions after switching to Kotlin. They have also declared Kotlin to be the preferred language for android.

It seems like the industry is shifting towards “safer” languages.

I'm not in America but the organisation for NIST recommends it in guidance now and its getting backing by the nsa

https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/3215760/nsa-releases-guidance-on-how-to-protect-against-software-memory-safety-issues/

https://www.zdnet.com/article/nsa-to-developers-think-about-switching-from-c-and-c-to-a-memory-safe-programming-language/ https://www.malwarebytes.com/blog/news/2022/11/nsa-guidance-on-how-to-avoid-software-memory-safety-issues

I see this becoming required in the future for new projects and solutions when working for new governnent solutions. The drum is certainly beating louder in the media about it.

1 more...