Professional bugs

[jj2007]

Just for fun: I thought of creating a thread documenting bugs made by big software companies. Let's start with WhatsApp :P

WhatsApp desktop, updated a few days ago, Win7-64:

Code: [Select]

00000001401D10CA   | 48 8B CE                  | mov rcx,rsi                           | rsi:&"n#file://#393491738963-1528635064@g.us"
00000001401D10CD   | E8 0E 2E E6 FF            | call 140033EE0                        |
00000001401D10D2   | 48 8B CF                  | mov rcx,rdi                           |
00000001401D10D5   | E8 06 2E E6 FF            | call 140033EE0                        |
00000001401D10DA   | 48 8B 7C 24 30            | mov rdi,qword ptr ss:[rsp+30]         |
00000001401D10DF   | E9 E1 FD FF FF            | jmp 1401D0EC5                         |
...
00000001401D10F0   | 48 8B 41 48               | mov rax,qword ptr ds:[rcx+48]         |
00000001401D10F4   | 48 8D 51 48               | lea rdx,qword ptr ds:[rcx+48]         |
00000001401D10F8   | 48 8B 08                  | mov rcx,qword ptr ds:[rax]            | <<<<<<<<<<< rax is zero!
00000001401D10FB   | 48 85 C9                  | test rcx,rcx                          |
00000001401D10FE   | 0F 85 2C 6C FF FF         | jne 1401C7D30                         |
00000001401D1104   | C3                        | ret                                   |
To catch such bugs, you need to set a Just-In-Time (JIT) debugger, in this case: x64Dbg (for 32-bit code, it's Olly for me).

Warning: When closing x64Dbg, it saves the database, and that can push the working set to over 1GB. You better kill x64.

[jj2007]

Sorry, WhatsApp, it's again your turn

[Raistlin]

https://www.telegraph.co.uk/technology/2019/05/14/whatsapp-flaw-allowed-israeli-hackers-snoop-phones/   :shock:

IT Commandment 17 : "Thay shalt get rid of mainstream social media"

[hutch--]

 

> "Thay shalt get rid of mainstream social media" 

[aw27]

Let's start with WhatsApp :P

Now all makes sense.   :idea:

[jj2007]

It's not WhatApp alone, which erratically starts thrashing my harddisk shuffling gigabytes from A to B. Right now it's at a modest 150MB, and stable, but every now and then it jumps up to ridiculous amounts of written bytes - 45 GIGA! No pattern detected so far.

Slimjet also misbehaves frequently. Thunderbird has a high disk usage, too, but it stays normally within half a GB. I wonder what they are doing :(

See the slimjet line below - and that's for only 15' CPU time, no special sites visited.

[LiaoMi]

It's not WhatApp alone, which erratically starts thrashing my harddisk shuffling gigabytes from A to B. Right now it's at a modest 150MB, and stable, but every now and then it jumps up to ridiculous amounts of written bytes - 45 GIGA! No pattern detected so far.

Slimjet also misbehaves frequently. Thunderbird has a high disk usage, too, but it stays normally within half a GB. I wonder what they are doing :(

See the slimjet line below - and that's for only 15' CPU time, no special sites visited.

[TimoVJL]

Windows have a one nice feature:
 Delete all Telemetry services and systems starts behaving badly, like odd file locks of several minutes, can't delete or replace file and so on.
Very professional way for punishment for user, who just block M$ of their spying system in legal way.

Google keyword: 'system process (PID 4) is locking the file'

EDIT: How to solve problem:

Check if your Application Experience service is disabled. It should be enabled and running. This problems appears if it is not.

[Raistlin]

And how do we solve this ?
https://thenextweb.com/security/2019/05/14/bitdefender-researchers-discover-terrifying-security-vulnerability-in-intel-cpus/

[LiaoMi]

And how do we solve this ?
https://thenextweb.com/security/2019/05/14/bitdefender-researchers-discover-terrifying-security-vulnerability-in-intel-cpus/

That’s where the good news ends, as BitDefender notes that a general fix is “impossible,” as the issue derives from a hardware design flaw. To conclusively protect against this attack, customers would have to replace their Intel silicon with a redesigned chip.

Intel Switches Gears to 7nm Post 10nm, First Node Live in 2021 https://www.techpowerup.com/255338/intel-switches-gears-to-7nm-post-10nm-first-node-live-in-2021

When it goes live and fit for mass production some time in 2021, Intel's 7 nm process will be a staggering 3 years behind TSMC, which fired up its 7 nm node in 2018. AMD is already mass-producing CPUs and GPUs on this node. Unlike TSMC, Intel will implement EUV (extreme ultraviolet) lithography straightaway. TSMC began 7 nm with DUV (deep ultraviolet) in 2018, and its EUV node went live in March. Samsung's 7 nm EUV node went up last October. Intel's roadmap doesn't show a leap from its current 10 nm node to 7 nm EUV, though. Intel will refine the 10 nm node to squeeze out energy-efficiency, with a refreshed 10 nm+ node that goes live some time in 2020.

The 7 nm+ node is slated for 2022, and succeeding 7 nm++ node in 2023. Intel did not detail the two besides illustrating performance/Watt gains by almost as much as the transition from 10 nm+ to 7 nm. Elsewhere in the market, the early 2020s could see TSMC 6 nm EUV take center-stage, and Samsung implement its 5 nm EUV node.

I will change my processor in 2024 

[jj2007]

This morning again, out of the blue, suddenly 13 GB of bytes written by WhatsApp desktop. WhatsApp is one fat bug

[jj2007]

Bloatware: 4 tabs open, 21 processes! And one of them has already written almost 2GB to disk. Fortunately I don't have an SSD

[TimoVJL]

You can compare chrome engine too:
https://vivaldi.com/download/

Those sites/pages might be a real problem.

[hutch--]

JJ,

Try Slimjet in incognito mode. Also go to the settings and run "Clear browsing data". The settings are useful for the problems you mention. I run the 64 bit version and never seem to have a problem.

[jj2007]

I suppose it's the Chrome basis. Writing gigabytes to disk is an insult anyway. Imagine you have an SSD, it will wear down quickly