Goodfellas writes, "This document aims to demonstrate a design weakness found in the handling of simply linked lists used to register binary formats handled by the Linux kernel. It affects all the kernel families (2.0/2.2/2.4/2.6), allowing the insertion of infection modules in kernel space that can be used by malicious users to create infection tools, for example rootkits. Proof of concept, details, and proposed solution (in PDF form): English, Spanish.

Jeremy White writes, "I am happy to announce that we have put up a new version of our public beta of CrossOver Mac as well as an equivalent public beta of CrossOver Linux. For Mac users, this release includes fixes to Internet Explorer, fixes for many cases where programs would crash when run (e.g. Microsoft Office 2000 and similar older applications), fixes for Outlook 2003, and a range of other improvements. For Linux users, the big highlights are support for World of Warcraft and many Steam based games (including Half Life 2 and Counterstrike), as well as support for Outlook 2003. Version 6 also represents a major improvement in the core of Wine since version 5 of CrossOver, so you may be pleasantly surprised as you try running unsupported applications."

Qubit writes, "DefectiveByDesign.org, a campaign by the Free Software Foundation, is making Oct 3rd a Day Against DRM: 'Defeating DRM is all about awareness. The direct actions that we have taken are all about this. Today we are asking you to let the people around you know that DRM is bad for our society. Let's create space for the debate. Do we want handcuffs and locks on art and knowledge? As our friends at Disney recognize, if there is this debate, we will have won.'" Bayboy adds an article from eWeek mentioning that members of DefectiveByDesign.org are going to descend on flagship Apple stores in New York and London to protest the company's embrace of DRM. And Another AC writes, "In honor of the Day Against DRM, DreamHost has released a new service called Files Forever (for Dreamhost customers only during beta) This seems to be basically an iTunes Music Store that anybody can sell any sort of files through... as long as they have no DRM. Dreamhost handles all the payment processing and stores the file forever, offering unlimited re-downloads to end users who buy files through the service. When somebody buys a file they're even allowed to 'loan' it to others for free!"

NASA's Goddard Flight Center has just issued a contract to use Touch User Interface technology from a company called Somatic Digital. Their "TouchBooks" let printed material connect to digital devices via sensors in the covers. (C'mon, don't tell me you've never pressed on a URL on a printed page and expected something to happen.) This page on the vendor's site has videos of a 7-year-old using a TouchBook. Works with XP and OS X.

1up has up a piece looking at the good and bad of gaming boxart. They cover some history of the art form, why things tend to change when they move from East to West, and some notables among the boxes of the past twenty-five-odd years. From the article: "After the American console market crashed in the early '80s, it was up to Japanese companies like Sega and Nintendo to pick up the slack. However, the cover artwork for many Japanese publishers' early games seemed to be lost in translation. The first generation of Nintendo Entertainment System cartridges were little more than enlarged screenshots showing off the main characters in all their pixelated glory. Sega Master System games were even worse: a plain grid on a barren white background, complete with a single, low-quality image." Relatedly, GameDaily is running an article on the history of game marketing, which I thought dovetailed nicely with this somewhat less serious examination of the subject.

Looks like the Zanga attack on MySpace last summer was a bellwether. Tiny Tuba writes, "Parents and social network users have one more thing to worry about. According to a PC World article, increasingly bad guys are booby-trapping sites like My Space and Webshots with malware in the form of links, ads, bogus invitations to view pictures, and more." From the article: "Like pickpockets at a festival, money-minded malware authors are drawn by the huge crowds visiting social networking sites."

moyoto writes, "Mandriva has announced today the immediate availability of Mandriva Linux 2007. This new version includes the latest Gnome 2.16 and KDE 3.5.4, as well as a 3D desktop with both AIGLX and Xgl technologies. You can download Mandriva 2007 in one of the several free versions available with bittorrent, or buy one of the commercial packs. You can easily test the new 3D Desktop with one of the 16 Live/Install CDs, Gnome- or KDE-based, available in more than 70 different languages." The distro features a new theme named Ia Ora ("hello" in French Polynesian).

MattSparkes writes, "A new study funded by the US Air Force has suggested a cheaper method of sending satellites (possibly missile weapons) into orbit. A 2-km-wide ring of superconducting magnets would contain and propel a payload, accelerating it over a period of hours, before suddenly flinging the satellite into space at 23 times the speed of sound. The satellites would be engineered to withstand the g-forces encountered (2,000 g), and be cased in an aerodynamic shell. A two-year study has been commisioned and will begin within a few weeks at LaunchPoint Technologies in Goleta, California." New Scientist points out that if such a launch ring were built, it would instantly become "one of the most important targets on the planet."

Akon writes, "eWeek is running a follow-up story on the claim by two hackers that Firefox's implementation of JavaScript is critically flawed and could result in code-execution attacks. Turns out this is a possible hoax that was overblown for laughs." Mozilla's engineers say the risk is limited to a denial-of-service issue. From the article: "'As part of our talk we mentioned that there was a previously known Firefox vulnerability that could result in a stack overflow ending up in remote code execution. However, the code we presented did not in fact do this, and I personally have not gotten it to result in code execution, nor do I know of anyone who has... I have not succeeded in making this code do anything more than cause a crash and eat up system resources, and I certainly haven't used it to take over anyone else's computer and execute arbitrary code,' Spiegelmock said." Spiegelmock also stated that the claim that there were 30 other undisclosed exploits was made solely by his co-presenter, Andrew Wbeelsoi.

In the age of months-early previews, reviews the day the game ships, and opinionated bloggers, it's always really nice to find something unexpected in a videogame. I went into Yakuza expecting something like GTA in Japan, and was very pleasantly surprised. I've been frustrated by this before, but here Amusement Vision presents an engrossing story strung together by a bare minimum of gameplay ... and it completely works. Yakuza is a Japanese gangster story with a uniquely cultural outlook, some very different minigames, and a zen-simple but highly enjoyable combat mechanic. If storytelling and character development mean as much to you as framerate and polygon counts, read on for my impressions to see if this title is for you.

An anonymous reader writes "The UK's equivalent of Walmart is taking on Microsoft in the software game. Tesco is famous for it's cheap 'value' food, but it's now offering 'value' alternatives to Microsoft's biggest products. From the article: 'Now, when you traverse the aisles in search of baked beans, sanitary towels and two-for-one packs of raw mince (hamburger), you can grab yourself a copy of Tesco Office (£20) — an alternative to the almost de-facto standard that is Microsoft Office — or Tesco Antivirus (£10), which is designed to keep your PC free of malware.' Tesco apparently 'takes one in every eight pounds spent in the UK'."

Prompted by Senator's Brownback's legislation, an interesting discussion is taking place on the ESRB, and gaming related politics. Next Generation offers up a damning look at the ESRB, wherein author Aaron Ruby says that the organization is 'incapable of effectively communicating with consumers, nor of fending off attacks from the industry's many critics.' At the Sony Online 'Station Blog', SOE's John Smedley retorts, saying that an industry-wide mentality is to blame for the ESRB's precarious position. Meanwhile, EGM's editor Shoe has some choice words on claims the organization shouldn't have to 'play through' every game that comes to market. From this last piece: "Sure, you usually can't see 100% of a game on an average playthrough. But I guarantee if you get three guys to sit down and finish every product, you can learn a lot more about what these games contain than from watching a bunch of highlight reels, which, remember, are edited by companies who have huge stakes in what the ratings turn out to be -- talk about conflict of interest!"

Davemania writes "CNN reports that the Nobel Prize in Physics has been award to John C. Mather and George F. Smoot for their contribution to the big-bang Theory." From the article: "Their work was based on measurements done with the help of the NASA-launched COBE satellite in 1989. They were able to observe the universe in its early stages about 380,000 years after it was born. Ripples in the light they detected also helped demonstrate how galaxies came together over time. 'The very detailed observations that the laureates have carried out from the COBE satellite have played a major role in the development of modern cosmology into a precise science,' the academy said in its citation." If you're interested, you can read a rundown on the prize-winning work (pdf) provided by the prize organization.

An anonymous reader writes "Julian Murdoch from GamersWithJobs asks the question 'Can game violence be good?' in a provocative article entitled The Red Suit. After a week playing Introversion Software's Wargames-inspired nuke game Defcon, his answer is that it can be, if not good, then at least informative. 'I admit that in a rousing teamspeak game of Defcon I am not drawn into bouts of real-time reflection. But on closing down the game for the night, I find myself oddly thoughtful: sad, reflective, a bit fragile. But not upset, and not wanting to wipe the game off my hard drive. Violence in games can teach us things. It can reach us in ways beyond mere titillation. It's all about context.'"

lizzyben writes "CIOinsight.com is hosting an interview with Robert Scoble on life after Microsoft. 'By blogging for the world's largest software company, Scoble changed the way companies communicate with the world and became an industry celebrity in the process.' He talks about MS culture, senior management and the benefits of blogging from inside the belly of the software beast." More from the article: "We used blog-search engines to find anyone who wrote the word 'Microsoft' on their blog. Even if they had no readers and were just ranting, 'I hate Microsoft,' I could see that and link to it, or I could participate in their comments, or send them an e-mail saying, 'What's going on?' And that told those people that someone was listening to their rants, that this is a different world than the one in which no one listens. It was an invaluable focus group that Microsoft didn't have to pay for."