[OffTopic] A vulnerability postmortem on Network Security Services
jj_1337 at live.dk
Thu Dec 2 10:58:10 UTC 2021
On Thursday, 2 December 2021 at 08:09:18 UTC, Paulo Pinto wrote:
> Google's Project Zero goes through a memory corruption exploit
> on Network Security Services, where despite all static
> analysers, fuzzers and code reviews, it flew under the radar.
> Hence why @safe matters.
Seems like a bounds-checking error and thus would be caught
without @safe even.
More information about the Digitalmars-d