Posted on 04/21/2021 5:41:17 PM PDT by DUMBGRUNT
Stemming from this research paper where researchers from the University of Minnesota intentionally worked to stealthy introduce vulnerabilities into the mainline Linux kernel. They intentionally introduced use-after-free bugs into the kernel covertly for their research paper.
So those from the University of Minnesota are no longer welcome to contribute to the upstream Linux kernel development.
(Excerpt) Read more at phoronix.com ...
This is interesting and the comments are surprising.
The LINUX community has always been helpful when I post a question. My guru is a sure bet for a Burn voter, we never discuss politics.
This will be fun to follow.
What is it about Minnesota these days?
Ah...Penguin Publishing. /sarc
Was it a closed experiment or did they get it out in the community?
I would think Linux would welcome an attack that exposed a vulnerability.
Reading the comments helped explain the article better. Makes you wonder what these commenters would think of an American researcher who funded a Chinese lab which developed a virus that locked down the entire world?
From the comments, one of the researchers was Chinese
Minnesota was and is a Wokefied cult state. They had abandoned reality a very long time ago.
I’ve seen the patches that fixed the bugs.
The commit logs did not indicate whether the engineers who found and fixed the bugs knew they were of hostile origin.
The originators should never be allowed near a software development effort.
In fact, they should be permanently barred from any occupation that requires even a miniscule of trust.
I like that it was caught and dealt with firmly.
“These new, questionable patches don’t appear to have any real value — for good or bad — and at the very least are just wasting time by upstream developers.”
That’s Windows in a nutshell. Ten of thousands of patches that do nothing but bloat the software.
As you know, the changes must be accepted by the maintainers.
I’ve always wondered if situations like this happened (or would happen).
This also is why Linux is so dependable... because it’s open source, and someone is going to find the cr@p and fix it.
Yes, and apparently a few got through.
I’d need to see the original hostile patches to be sure, but I venture the violations were subtly embedded in valid code.
I lived in that awful state for ten years. It got to the point where I no longer recognize any educational credentials or professional license from that state.
“....nothing but bloat the software.”
Who needs Easter Eggs in an O/S?
Yes, when you have many thousands of developers putting effort into a project for free, just for the love of building the OS or software, they tend to care about what they’re building and they also use the same product so they want it to be of high quality and safe.
Apple does it for the high profits.
Microsoft was created by a madman and windows is trying to compete with google as far as personal data collection these days, plus MS has a monopoly so they’re not required to give a damn to keep their customers.
It has become a blue turd state.
Do you happen to know the commit(s) that fixed the bugs? And for the convenience, the repo?
Lots of people who build malware do it for the love of building malware.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.