Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://grapheneos.social/users/GrapheneOS/statuses/113943817009066184">GrapheneOS (grapheneos@grapheneos.social)'s status on Tuesday, 04-Feb-2025 14:22:03 JST</a><a href="https://grapheneos.social/@GrapheneOS" title="grapheneos@grapheneos.social"><img src="https://gnusocial.jp/avatar/99224-48-20240219114657.webp" width="48" height="48" alt="GrapheneOS" style="position: absolute; left: 0; top: 0;">GrapheneOS</a><div><a href="https://grapheneos.social/@GrapheneOS/113943816103474971" rel="in-reply-to">in reply to</a></div></section><article><p>Linux kernel has a standard disabled by default implementation of hardware memory tagging. We very recently began enabling to defend it from issues like this USB heap corruption vulnerability (<a href="https://grapheneos.org/releases#2025011500" rel="nofollow noreferrer">https://grapheneos.org/releases#2025011500</a>). It's a major improvement but still not nearly as good as hardened_malloc.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4504772#notice-8820674">In conversation</a><time datetime="2025-02-04T14:22:03+09:00" title="Tuesday, 04-Feb-2025 14:22:03 JST">about 19 days ago</time> <span>from <span><a href="https://grapheneos.social/@GrapheneOS/113943817009066184" rel="external" title="Sent from grapheneos.social via ActivityPub">grapheneos.social</a></span></span><a href="https://grapheneos.social/@GrapheneOS/113943817009066184">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: grapheneos.org</div><h5><a href="https://grapheneos.org/releases#2025011500">GrapheneOS releases</a></h5><div> from <span>@GrapheneOS</span></div></header><div>Official releases of GrapheneOS, a security and privacy focused mobile OS with Android app compatibility.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
GrapheneOS (grapheneos@grapheneos.social)'s status on Tuesday, 04-Feb-2025 14:22:03 JST GrapheneOS
in reply to
Linux kernel has a standard disabled by default implementation of hardware memory tagging. We very recently began enabling to defend it from issues like this USB heap corruption vulnerability (https://grapheneos.org/releases#2025011500). It's a major improvement but still not nearly as good as hardened_malloc.
In conversationabout 19 days ago from grapheneos.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: grapheneos.org
  GrapheneOS releases
  from @GrapheneOS
  Official releases of GrapheneOS, a security and privacy focused mobile OS with Android app compatibility.

Public

Embed Notice

HTML Code

Corresponding Notice