The video game funding gap: How investors are failing marginalized developers
‘There is a massive disparity on how funding is allocated in the industry’
Computers Tech Games Crypto Music and More
‘There is a massive disparity on how funding is allocated in the industry’
‘There is a massive disparity on how funding is allocated in the industry’
Ever since TikTok was launched by the Chinese technology company ByteDance, it has gained enormous popularity worldwide. The app came…
The post TikTok Fined Millions After Latest Failing To Safeguard Child Users appeared first on TechRound.
As detailed in the technical document here, Google Project Zero’s security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux. To validate this hypothesis, Horn compared the CentOS Stream 9 kernel to the stable linux-5.15.y stable tree…. As expected, it turned out that several kernel fixes have not been made deployed in older, but supported versions of CentOS Stream/RHEL. Horn further noted that for this case, Project Zero is giving a 90-day deadline to release a fix, but in the future, it may allot even stricter deadlines for missing backports….
Red Hat accepted all three bugs reported by Horn and assigned them CVE numbers. However, the company failed to fix these issues in the allotted 90-day timeline, and as such, these vulnerabilities are being made public by Google Project Zero.
Horn is urging better patch scheduling so “an attacker who wants to quickly find a nice memory corruption bug in CentOS/RHEL can’t just find such bugs in the delta between upstream stable and your kernel.”
Read more of this story at Slashdot.