8 comments

  • goodburb 1 day ago
    Tested on three Android devices (version 9, 13, 16) with different Firefox versions under 150 (had to modify for older).

    Two boot looped, I had to enter recovery and the other just powered off [0].

    The demo modifies the wallpaper on supported Pixel devices.

    [0] IonStack https://rootme.nebusec.ai

    ____

    Tip: Install a Chromium flavor browser (Chromite) separate from the main browser.

    Disable Javascript and hardware accelerated video decoder (commonly exploited) from the flags page and enable reader mode to fix broken JS-dependent websites when browsing blogs and random sites on your personal devices, else dedicate a tablet.

    • Retr0id 1 hour ago
      I've been noodling with porting the kernel exploit to other devices, and the exploit is very sensitive to how the compiler happens to lay out stack frames, which varies between kernel builds. Once you figure out the right "stamp method" and offsets for a particular kernel build though, it's fairly reliable.
    • etenal 2 hours ago
      Thanks for testing, we currently only tested it on Pixel 10, but there are a few people on our repo creating PR to support other devices, you can take a look here https://github.com/NebuSec/CyberMeowfia
    • Chu4eeno 1 day ago
      fwiw, the firefox vulnerability seems to be CVE-2026-10702 (type confusion in the ionmonkey jit compiler): https://www.sentinelone.com/vulnerability-database/cve-2026-...
  • teleforce 2 days ago
    >Google has rewarded us $92,337 in kernelCTF

    I'm all ears now

  • amatecha 2 days ago
    Daaaaamn: "GhostLock was introduced in Linux 2.6.39 and fixed in Linux 7.1."
    • Curtis_Guan 1 hour ago
      2.6.39? That's really going back a ways. It's great to hear that GhostLock is already fixed in 7.1.
  • password4321 2 days ago
    Forgot to include "LPE" (local...) in the title so most of us can get back to weekending.
    • circularfoyers 2 days ago
      Since this enables container escape, sounds like this might still impact quite a lot of us?
      • password4321 1 day ago
        I guess, if you thought Docker/etc. was a security boundary
        • insanitybit 1 hour ago
          They are a security boundary. The fact that you need a vulnerability to escape them is proof of that. They just don't have a particularly high cost of escape because reachable kernel vulnerabilities are so common.
          • worthless-trash 1 hour ago
            Some people clearly do use containers as deployment mechanism, with security not in mind.
        • markasoftware 2 hours ago
          Runpod, digital ocean's gpu cloud, and at least a few others use Linux containers for isolation between tenants (look at Wiz's blog post about the nvidia container toolkit bug; digitalocean just puts everyone in a massive k8s cluster)
        • circularfoyers 1 hour ago
          I know there's a lot you can do in k8s to mitigate it, but I didn't think that prevented it outright.
      • hollerith 1 day ago
        A lot of us rely on Linux containers' being escape-proof?

        I would have hoped that only a few of us are so misinformed as to do that.

    • Chu4eeno 1 day ago
      they also found a type confusion in firefox/ionmonkey, so you can go from random website to pwned very quickly.
  • alexjplant 2 hours ago
    > This is the same shape as many other life-cycle bugs [...]

    Claude-ism detected. IME with Claude Code an object does not have a type or definition, apparently, but rather a shape (or at least it reaches for that word before more technically-accurate ones). Problems are not of a similar class or type, but of the same shape. Functions are not defined by their signatures but by their shape. Who talks like this and how did it make its way into the training data so pervasively?

    • dang 1 hour ago
      I think you're probably right that the article was AI-assisted, but (if so) it's important not to confuse that property of the article with the thing the article is about. Google wouldn't pay $90k for a hallucination.

      I don't mean that as a criticism—the question of how to receive AI-processed content is chaotic right now. I'm working on a post about that here: https://news.ycombinator.com/item?id=48887149.

      Btw, Nebula Sec is a YC startup in the current batch. We've been working with them on how to launch on HN, and one of the things I've been trying to explain is that the HN audience won't respond well to LLM-generated reports. The underlying work, though, is impressive. These guys know what they're doing—the OP is by no means their only significant find—and the fact that they're doing it with an agent, rather than the traditional way, is significant.

      • cwillu 1 hour ago
        A thing that notably triggers my allergies is that if significant human effort went into something, a few paragraphs written by a human seems like a trivial additional investment; if that last touch is missing, it's really hard for me to extend the benefit of the doubt that there really is something there.

        Obviously this is only one signal among many, one that can be overruled, but the ick remains regardless.

        • dang 1 hour ago
          I agree to an extent, but there are many exceptions, so one can't really withhold the benefit of the doubt.

          For example, non-native English speakers (as is the case with these guys IIRC) frequently use these tools. Maybe they shouldn't—as I've been telling a lot of people who email, mistakes are rapidly becoming a sign of authenticity at this point—but the belief that they need to is widespread, and this doesn't mean they didn't do significant work.

          (Side note: it's a common assumption that machine-translated text is in a different category from LLM-edited text. From what we're seeing, that assumption is unfortunately completely wrong.)

          Another important case is people with disabilities who find these technologies assistive. Again, one can argue that they're increasingly better off just posting their own writing in the raw, but this is a pretty obscure point to get across to people.

          Beyond those cases, a lot of people just don't write easily, and/or don't feel their writing is any good. A lot of them are using LLMs to compensate for that, and this by no means implies that their work is bad. Maybe they just have a phobia about writing and/or don't express themselves well that way.

          People who enjoy writing or are confident writers fail to understand how emotionally fraught writing is for many others.

          Personally I'm down with the "writing is thinking" view, from which it follows that bad writing is bad thinking. But it doesn't follow that "thinking is writing" - that's a much stronger claim, from which it would follow that good thinking is good writing—and this I think is false.

          • sph 33 minutes ago
            Non-native speakers have learned and improved their English for decades by trial-and-error, let’s stop using that as an excuse to use LLMs. I have been there, and making mistakes is how one learns to communicate effectively in another language.

            If one doesn’t put effort in their writing, I am not going to put effort to read whatever slop they put out instead. Simple as that.

            • dang 30 minutes ago
              What you say implies that people should "learn and improve their English" before posting their work to HN. I'm not with you on that, and here's why: we're trying to optimize for the most-intellectually-interesting site, not the most-English site: https://hn.algolia.com/?dateRange=all&page=0&prefix=true&sor..., even though people do have to post in English here.

              That may sound like too fine a distinction, but it isn't. Here's an example: Show HN: Getting GLM 5.2 running on my slow computer - https://news.ycombinator.com/item?id=48842459, which was the #1 thread on HN a couple days ago (https://news.ycombinator.com/front?day=2026-07-09).

              That user is a non-native English speaker who we were able to help get his posts into a format that HN could appreciate and respond to. His work is obviously excellent—the community response was unambiguous. But I don't think it would have made it through without our help.

              I'm sure you weren't saying that if someone can't describe their work in good English then it must be slop, but I do need to say that the space is larger than you make it sound. Which is unfortunate in a way—it would actually be easier to narrow it down, but then we'd miss posts like that one.

        • clhodapp 16 minutes ago
          It frankly doesn't matter how much human effort went into finding the vulnerability, it just matters if it exists, how severe it is, and how easy it is to exploit.
    • etenal 1 hour ago
      We apologize for the confusion. We used AI to run final grammar pass and didn't noticed it changed some wording (shape is one of them). Will be more careful in the future
    • dmittman 1 hour ago
      Isn't this just observation bias? "If I haven't encountered something, then it must not be real?" (Paraphrasing)
    • TurdF3rguson 21 minutes ago
      Except that working with Claude has me saying things like shape lately. I think I like it.
  • mixmastamyk 2 days ago
    A what?
    • happymellon 2 days ago
      Use after free?
      • dang 3 hours ago
        Thanks! I've put that in the toptext now.
        • raldi 1 hour ago
          I don't actually see that change, unless I misunderstand the meaning of toptext.
    • teo_zero 1 day ago
      I'm glad someone else asked. :)

      It's not so widely used and it's not explained in the first couple screenfuls of TFA (which by itself is weirdly structured, taking entire paragraphs to explain when it was introduced, when it was discovered, etc. before even explaining what it actually is).

      Of course the title was chosen when the article was first published on a site dedicated to security, where probably everyone knows it. This suggests that insisting on unmodified titles when republishing in HN is a poor rule.

      • lkirkwood 1 day ago
        Not that everyone should know it but it's definitely widely used. A Google search for "stack UAF" also turns it up.
  • Uptrenda 2 hours ago
    Has anyone in infosec ever seen the term "use after free" before LLMs? Or is this basically an acronym claude invented? I say this because I see claude use this term all the time like its common knowledge but in 15+ years in tech never seen it myself. I've seen all kinds of terms used to describe memory errors: memory corruption, heap corruption, stack corruption, whatever, just never this acronym.
    • mirashii 2 hours ago
      This is and has been a common term in any systems programming concept for decades. You can, for example, search CVEs and easily find some from over 15 years ago: https://www.cve.org/CVERecord?id=CVE-2010-1119

      It was even enumerated in the first pass of CWE as CWE-416 in 2006.

    • LPisGood 2 hours ago
      Yes, it was a common attack vector in binary exploitation. Heap based attack vector like use after free, double free, heap overflows, and others are pretty neat. They force you to learn a lot about how malloc works.

      There is a lot of cool work that went into making memory allocation work well; the different arenas, fast bins, chunk headers, etc. are super cool.

    • michaellee8 2 hours ago
      if you have spend any amount of time in low level c vulnerabilities you will have heard about it, it is a very common time on the low level/cybersec space.
    • mdkotlik 2 hours ago
      yes, it’s a very common term in infosec. I haven’t heard the “UAF” acronym before though
      • smcameron 1 minute ago
        I've heard of use after free, but I've only heard UAF to mean Ukraine Armed Forces.
    • paulv 2 hours ago
      It has been a known bug class for quite some time.
    • atoav 1 hour ago
      Huh? That is a really common term. There have been even memes about it. I remember roughly 5 years ago I first heard the ironic; "Real men use after free" in a discussion about Rust's benefits as its borrowing checker would have also prevented this one.

      "Use after free" is also described in most standard books about C as a thing you should never do, have you read one?

    • asveikau 2 hours ago
      I haven't really seen it as an acronym "UAF", but I can't recall the first time I heard "use after free". It was probably in the previous century.

      The idea that Claude came up with it is ridiculous.

    • Klonoar 2 hours ago
    • abofh 2 hours ago
      [flagged]
      • dang 2 hours ago
        Please don't be snarky or cross into putdowns or personal attack. We're all in (let's call it) the unlucky 10,000 about something. About most things actually.

        https://news.ycombinator.com/newsguidelines.html

        • abofh 57 minutes ago
          To an extent that's fair, but you do understand that "ive not heard of a vulnerability older than me" begs credulity? Especially with the fifteen years experience comment? I'm all for not being snarky (I'm not), but this was bait
      • LastTrain 2 hours ago
        There is an interesting episode of This American Life about how everyone, everyone, has weird gaps in their knowledge that eventually get filled in sometimes fun or humiliating ways. You have these too.
        • dang 2 hours ago
          Wow, what is that episode? I haven't listened to TAL in probably more than a decade but it was great for a long time, and for all I know still is.
          • LastTrain 1 hour ago
            "A Little Bit of Knowledge"
      • defrost 2 hours ago
        I can see that you're old and that I'm older, but I fail to see the justification for being snarky about that.

          Please don't sneer, including at the rest of the community.
        
        ~ https://news.ycombinator.com/newsguidelines.html
        • abofh 2 hours ago
          [flagged]
          • defrost 2 hours ago
            And a wrong justifies a wrong?

            These are the times we make.

            • abofh 2 hours ago
              [flagged]
      • Uptrenda 2 hours ago
        [flagged]