frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Since Chromium 148, Math.tanh is now fingerprintable to link underlying OS

https://scrapfly.dev/posts/browser-math-os-fingerprint/
337•joahnn_s•5h ago•161 comments

GhostLock, a stack-UAF that has existed in all Linux distributions for 15 years

https://nebusec.ai/research/ionstack-part-2/
111•ranger_danger•4d ago•30 comments

Cyberpunk Comics, Manga and Graphic Novels

https://shellzine.net/cyberpunk-comics/
88•zdw•4h ago•23 comments

Tiny Emulators

https://floooh.github.io/tiny8bit-preview/index.html
160•naves•6h ago•10 comments

Why Vanilla JavaScript

https://guseyn.com/html/posts/why-vanilla-js.html
75•guseyn•4h ago•32 comments

So you want to learn physics (second edition, 2021)

https://www.susanrigetti.com/physics
116•azhenley•4d ago•13 comments

Designing and assembling my first PCB

https://vilkeliskis.com/b/2026/0711.html
58•tadasv•4h ago•11 comments

Modernizing Property Tax Assessments in Allegheny County

https://www.prohousingpgh.org/blog/new-report-modernizing-property-tax-assessments-in-allegheny-c...
16•mooreds•1h ago•2 comments

Old and new apps, via modern coding agents

https://terrytao.wordpress.com/2026/07/11/old-and-new-apps-via-modern-coding-agents/
420•subset•15h ago•123 comments

Ask HN: What Are You Working On? (July 2026)

84•david927•5h ago•234 comments

The four horsemen behind Postgres outages

https://malisper.me/the-four-horsemen-behind-thousands-of-postgres-outages/
14•craigkerstiens•3d ago•4 comments

Migrating a production AI agent to GPT-5.6: 2.2x faster, 27% cheaper

https://ploy.ai/blog/migrating-a-production-ai-agent-to-gpt-5-6
146•brryant•9h ago•49 comments

Claude Code sends 33k tokens before reading the prompt; OpenCode sends 7k

https://systima.ai/blog/claude-code-vs-opencode-token-overhead
479•systima•8h ago•269 comments

How we can reduce traffic congestion

https://research.google/blog/the-power-of-collaboration-how-we-can-reduce-traffic-congestion/
86•raahelb•11h ago•100 comments

Profiling the "Abundance" housing bottleneck with real data

https://laxmena.com/same-capacity-less-throughput
30•laxmena•5h ago•12 comments

LARP – Revenue infrastructure for serious founders

https://www.larp.website/
167•BerislavLopac•10h ago•37 comments

I Learned to Read Again

https://substack.magazinenongrata.com/p/how-i-learned-to-read-again
107•georgex7•8h ago•45 comments

Why write code in 2026

https://softwaredoug.com/blog/2026/07/09/write-code
118•softwaredoug•2d ago•157 comments

Kode Dot Programmable pocket device for makers, pentesters and geeks

https://kode.diy
44•iNic•5h ago•11 comments

Architecture Description Languages [pdf]

https://ics.uci.edu/~taylor/documents/2000-ADLs-TSE.pdf
23•ascent817•4h ago•1 comments

First look at Quest, the final ship of Antarctic explorer Shackleton

https://www.cbc.ca/news/canada/quest-shipwreck-expedition-images-9.7262229
3•curmudgeon22•4d ago•0 comments

Calculix: A Free Software Three-Dimensional Structural Finite Element Program

https://www.calculix.de/
6•joebig•3d ago•0 comments

Automation Without Understanding

https://arxiv.org/abs/2607.06377
99•root-parent•10h ago•42 comments

Vint Cerf, “father of the Internet”, is retiring

https://techcrunch.com/2026/06/30/the-father-of-the-internet-is-finally-retiring/
285•compiler-guy•3d ago•163 comments

I love LLMs, I hate hype

https://geohot.github.io//blog/jekyll/update/2026/07/12/i-love-llms.html
339•therepanic•8h ago•207 comments

Flash-MSA: Accelerating Million-Token Training with Sparse Attention Kernels

https://nanduruganesh.github.io/flash-msa/
25•rawsh•6h ago•1 comments

Mechanistic interpretability researchers applying causality theory to LLMs

https://cacm.acm.org/news/can-we-understand-how-large-language-models-reason/
84•adunk•8h ago•64 comments

Against Usefulness

https://www.motivenotes.ai/p/against-usefulness
87•supo•9h ago•22 comments

How to read more books

https://scotto.me/blog/2026-07-12-how-to-read-more-books/
266•silcoon•11h ago•147 comments

The One-Step Trap (In AI Research)

http://incompleteideas.net/IncIdeas/OneStepTrap.html
46•jxmorris12•8h ago•8 comments
Open in hackernews

GhostLock, a stack-UAF that has existed in all Linux distributions for 15 years

https://nebusec.ai/research/ionstack-part-2/
111•ranger_danger•4d ago
UAF = Use After Free (https://en.wikipedia.org/wiki/Dangling_pointer)

Comments

mixmastamyk•2d ago
A what?
happymellon•2d ago
Use after free?
dang•51m ago
Thanks! I've put that in the toptext now.
teo_zero•1d ago
I'm glad someone else asked. :)

It's not so widely used and it's not explained in the first couple screenfuls of TFA (which by itself is weirdly structured, taking entire paragraphs to explain when it was introduced, when it was discovered, etc. before even explaining what it actually is).

Of course the title was chosen when the article was first published on a site dedicated to security, where probably everyone knows it. This suggests that insisting on unmodified titles when republishing in HN is a poor rule.

lkirkwood•1d ago
Not that everyone should know it but it's definitely widely used. A Google search for "stack UAF" also turns it up.
teleforce•2d ago
>Google has rewarded us $92,337 in kernelCTF

I'm all ears now

mrbluecoat•2d ago
Seems low considering the wide impact, but maybe the only thing corporations throw big money at is remote exploits?
tptacek•1d ago
That's a huge amount of money for a vulnerability.
password4321•2d ago
Forgot to include "LPE" (local...) in the title so most of us can get back to weekending.
circularfoyers•1d ago
Since this enables container escape, sounds like this might still impact quite a lot of us?
hollerith•1d ago
A lot of us rely on Linux containers' being escape-proof?

I would have hoped that only a few of us are so misinformed as to do that.

password4321•1d ago
I guess, if you thought Docker/etc. was a security boundary
Chu4eeno•1d ago
they also found a type confusion in firefox/ionmonkey, so you can go from random website to pwned very quickly.
amatecha•2d ago
Daaaaamn: "GhostLock was introduced in Linux 2.6.39 and fixed in Linux 7.1."
goodburb•1d ago
Tested on three Android devices (version 9, 13, 16) with different Firefox versions under 150 (had to modify for older).

Two boot looped, I had to enter recovery and the other just powered off [0].

The demo modifies the wallpaper on supported Pixel devices.

[0] IonStack https://rootme.nebusec.ai

____

Tip: Install a Chromium flavor browser (Chromite) separate from the main browser.

Disable Javascript and hardware accelerated video decoder (commonly exploited) from the flags page and enable reader mode to fix broken JS-dependent websites when browsing blogs and random sites on your personal devices, else dedicate a tablet.

Chu4eeno•1d ago
fwiw, the firefox vulnerability seems to be CVE-2026-10702 (type confusion in the ionmonkey jit compiler): https://www.sentinelone.com/vulnerability-database/cve-2026-...
etenal•13m ago
Thanks for testing, we currently only tested it on Pixel 10, but there are a few people on our repo creating PR to support other devices, you can take a look here https://github.com/NebuSec/CyberMeowfia
Uptrenda•17m ago
Has anyone in infosec ever seen the term "use after free" before LLMs? Or is this basically an acronym claude invented? I say this because I see claude use this term all the time like its common knowledge but in 15+ years in tech never seen it myself. I've seen all kinds of terms used to describe memory errors: memory corruption, heap corruption, stack corruption, whatever, just never this acronym.
abofh•14m ago
Wow, you've had a really scary career if you haven't heard of a term invented by C.
Uptrenda•9m ago
everyone look at this guy, he's that much smarter and more expert than me, how could i have missed something so basic. i hope to aspire to your level some day.
abofh•1m ago
I do too, at some point I'm going to retire, and I hope you'll be looking down on people ignoring the twenty years of your career with disdain too!

Have fun with that.

LastTrain•5m ago
There is an interesting episode of This American Life about how everyone, everyone, has weird gaps in their knowledge that eventually get filled in sometimes fun or humiliating ways. You have these too.
paulv•14m ago
alexjplant•12m ago
> This is the same shape as many other life-cycle bugs [...]

Claude-ism detected. According to it an object does not have a type or definition, apparently, but rather a shape (or at least it reaches for that word before more technically-accurate ones). Problems are not of a similar class or type, but of the same shape. Functions are not defined by their signatures but by their shape. Who talks like this and how did it make its way into the training data so pervasively?

It has been a known bug class for quite some time.
michaellee8•14m ago
if you have spend any amount of time in low level c vulnerabilities you will have heard about it, it is a very common time on the low level/cybersec space.
mdkotlik•14m ago
yes, it’s a very common term in infosec. I haven’t heard the “UAF” acronym before though
LPisGood•12m ago
Yes, it was a common attack vector in binary exploitation. Heap based attack vector like use after free, double free, heap overflows, and others are pretty neat. They force you to learn a lot about how malloc works.

There is a lot of cool work that went into making memory allocation work well; the different arenas, fast bins, chunk headers, etc. are super cool.

mirashii•11m ago
This is and has been a common term in any systems programming concept for decades. You can, for example, search CVEs and easily find some from over 15 years ago: https://www.cve.org/CVERecord?id=CVE-2010-1119

It was even enumerated in the first pass of CWE as CWE-416 in 2006.

Klonoar•8m ago
You have somehow lived in a strange bubble.

2025: https://redis.io/blog/security-advisory-cve-2025-49844/ 2023: https://seclists.org/oss-sec/2023/q2/133 2022: https://www.zerodayinitiative.com/advisories/ZDI-22-1690/ 2014: https://ftp.openbsd.org/pub/OpenBSD/patches/5.4/common/008_o...

It's an issue as old as time, or thereabouts.

asveikau•8m ago
I haven't really seen it as an acronym "UAF", but I can't recall the first time I heard "use after free". It was probably in the previous century.

The idea that Claude came up with it is ridiculous.