TechPulseTechPulse
Back to News
Advertisement
Advertisement

⚡ Community Insights

Discussion Sentiment

67% Positive

Analyzed from 926 words in the discussion.

Trending Topics

#freebsd#linux#security#response#system#why#windows#bragging#anything#don

Discussion (47 Comments)Read Original on HackerNews

cryptbeabout 1 hour ago
Nice to randomly encounter our own work here.

Check out our blog post for a fun walkthrough: https://blog.calif.io/p/cve-2026-7270-how-i-get-root-on-free...

AI-generated working exploit, write-up and prompts: https://github.com/califio/publications/tree/main/MADBugs/fr...

tptacekabout 1 hour ago
Calif is just killing it these past couple months. Reminder that Calif is Thai Duong's new firm.
cryptbe38 minutes ago
You're always super kind to me :)
wolvoleoabout 1 hour ago
Oof that's a pretty big one, I didn't realise but I had already updated anyway.
cyberpunkabout 2 hours ago
This is from April 28th, it was patched in 15.0R-p7.
itsthefrankabout 2 hours ago
-p8 is the current patch level for 15.0-RELEASE so if people have been keeping on top of patching this is already two reboots in the past.
loegabout 2 hours ago
Just yesterday, cperciva was bragging about the FreeBSD approach to security: https://news.ycombinator.com/item?id=48056853 You can argue the response here was well coordinated, but having an LPE in a core syscall like execve() isn't ideal.
broken-kebababout 1 hour ago
Or in other words, the response is well-coordinated so cperciva's bragging is justified, isn't it?
cperciva4 minutes ago
Indeed, I was thinking about this precise issue when I made the point that corresponding issues get handled much better in FreeBSD than in Linux.
yjftsjthsd-habout 1 hour ago
I think cperciva may have been a touch overenthusiastic, but surely this is in fact proving his point? His claim was, as you note before trying to ignore it, about coordination. When one of the recent Linux LPEs broke, the fix wasn't in distro packages yet; there was a vulnerability that users couldn't practically do anything about. This is an LPE that is fixed in the binaries that have already shipped. If I was playing cheerleader, this is exactly the case I'd use to argue that FreeBSD being a single unified system is a win and that its approach to handing security problems is very on top of things.
tptacekabout 1 hour ago
He was talking about managing disclosure and patch flow, and you're just taking it as an opportunity to dunk on him.
loeg2 minutes ago
If I'm "dunking" on anything, it's FreeBSD.
bchabout 1 hour ago
Its like rain on your wedding day - not actually ironic, just unfortunate.
stackghostabout 1 hour ago
A not-insignificant chunk of the userbase of the various BSDs is there because they were turned off of Linux after controversial things like Gnome 3, systemd being shoved down users' throats despite being a broken mess, wayland (though nobody was as arrogant about wayland as Poettering was about systemd), etc.

All that to say, the BSD userbase as a sizeable subset that are there for countercultural reasons, rather than technical. These are the people who buy into, say, OpenBSD's vaunted security reputation, or believe that "linux bad because reasons", so you're always going to get people in here bragging, because "not using linux" has become part of their identity.

I run a mix of FreeBSD and Linux on my personal devices. The ground truth is that FreeBSD is yet another unix-like OS written in C, and thus not immune from the types of bugs that stem from that lineage. None of the BSD distros are materially more secure or better than a properly-configured and patched Linux.

applfanboysbgonabout 1 hour ago
The person 'bragging' was not a countercultural user, but rather the FreeBSD engineering lead. They were, however, talking about FreeBSD's response to security vulnerabilities, in contrast to Linux's response.

> thus not immune from the types of bugs that stem from that lineage

They never claimed that FreeBSD didn't have vulnerabilities. I honestly have no idea why grandparent decided to bring up their comment when it exactly validates what the person they were criticising says. GP admits the response to the vulnerability was well-coordinated. The response to security vulnerabilities was the exact, and only, subject of the post they're calling out.

wolvoleo42 minutes ago
I wouldn't call it countercultural. And Wayland actually runs on freebsd these days.

I use Linux as well but I really like FreeBSD for a number of technical reasons. Like the ports collection, the jails, the first-class citizen ZFS.

And Gnome 3 doesn't really have anything to do with Linux. It is also available for FreeBSD if you want it (I don't, I hate the minimalist opinionated design style so I use KDE, also on Linux).

But I use Linux on servers where I run docker for example. It's not about "not using linux".

icedchaiabout 1 hour ago
I also use a mix. I moved to FreeBSD initially after a rough period w/Linux in the late 90's. Today, my FreeBSD machines are all VMs running on Linux hosts!
rvzabout 2 hours ago
> IV. Workaround

> No workaround is available.

Oh dear.

itsthefrankabout 2 hours ago
> V. Solution

> Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date, and reboot the system.

Not everyone can just freebsd-update and reboot, so yes, "Oh dear." is a good response to this.

skydhashabout 2 hours ago
Why can't they? Upgrading and rebooting is kinda the standard response for most security issues. So I would expect something like Ansible's playbooks for this exact scenario. You might also have it setup as a staggered rollout.
epcoaabout 2 hours ago
Anyone relying on a 30+ year old monolith kernel written in C to not have some exploitable LPEs lurking should stay in basket weaving and out of sysadmin.
itsthefrankabout 2 hours ago
Not sure why the snark but if people are running FreeBSD then they should be...basket weaving instead of using it? Yes, the correct solution is to patch and reboot but not everyone is in a place to jump and do that which is why a temp workaround, if possible, would be welcome
cyberpunkabout 2 hours ago
Yep.

You should treat any system where non-admins regularly login as basically insecure/owned and rig your architecture appropriately.

TBH -- I don't have any of these kinds of boxes anymore. Who is really running anything like this in 2026 and for what purpose?

yjftsjthsd-habout 1 hour ago
...as opposed to what, exactly? Linux is a 34 y.o. monolithic kernel in C, the BSDs are all forked from the same base (386BSD) of around the same age, XNU is 29 years old (and also heavily based on BSD code while also throwing in mach code) in C and other languages,...
paulddraper42 minutes ago
What prevents it?
tptacekabout 1 hour ago
Does this vulnerability not rely on SUID binaries?
cperciva7 minutes ago
I don't think so? It's a buffer overflow in the system call.
wolvoleo41 minutes ago
Why? Just update.
doublerabbitabout 2 hours ago
Linux is on their second and FreeBSD is on their first. How many is Windows on?
dwatttttabout 2 hours ago
If you think Linux is on their first or second, I'm not sure how or what you're counting.
doublerabbitabout 1 hour ago
> I'm not sure how or what you're counting.

The recent two. FailCopy and DirtyFrag and FreeBSD with Execve.

2 - Linux 1 - FreeBSD.

Of course, all OS have had past-time exploits. Three now have made the news.

dwatttttabout 1 hour ago
Your question was "how many high profile privilege escalations Windows has had recently" then? I can't think of any, 0?
pjmlpabout 2 hours ago
Plenty, Microsoft has security teams whose job is to attack Windows.

Naturally they don't do blog posts about what they find.

murderfsabout 1 hour ago
Local privilege escalation is largely irrelevant on Windows because basically no one uses it in a multi-user system, and application sandboxing is effectively nonexistent.
hnlmorgabout 2 hours ago
You talk as if Windows is the only OS that has red teams attacking the system when clearly that isn’t even remotely true.