This is amazing, Windows Defender used the open source unrar code, but changed all the signed ints to unsigned for some reason, breaking the code. @halvarflake noticed and got it fixed. Remote SYSTEM memory corruption
https://twitter.com/ProjectZeroBugs/status/981562931178389505 …
Replying to @taviso @halvarflake
Rich Felker Retweeted Tavis Ormandy
Reminds me of how Google took @musllibc for Fuchsia and replaced all the carefully-written-for-correctness subtle details with sloppy broken C++.https://twitter.com/taviso/status/981577213546909697 …
Rich Felker added,
Tavis OrmandyVerified account @taviso
This is amazing, Windows Defender used the open source unrar code, but changed all the signed ints to unsigned for some reason, breaking the code. @halvarflake noticed and got it fixed. Remote SYSTEM memory corruption
https://twitter.com/ProjectZeroBugs/status/981562931178389505 …
https://twitter.com/ProjectZeroBugs/status/981562931178389505 …
5:10 PM - 4 Apr 2018
0 replies
2 retweets
17 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.