I see https://bugs.chromium.org/p/project-zero/issues/detail?id=1633 … was finally published today despite public commits existing for weeks. Thanks to @tehjh and Google's Project Zero for enabling Linus' silent fix commit messages to ensure only our customers get fixes promptly :)
Well, I suspect Microsoft have their own issues with MAPP (at least there were some historical concerns). But yeah, I definitely see the issue at hand. We've had extensive discussions with Chrome and WebKit about this as well, with no satisfying result yet.
-
-
Yep, forgot about that. Also I'm not asking for PoCs/exploits to be released immediately, just that there is a security issue that needs attention. It can nearly be inferred by anything "Reported by: Jann Horn" etc ;) but either forcing a proper commit message or...
-
noting it OOB someplace conspicuous around the same time would solve the problem
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.