@grsecurity @happyfunstein For what its worth, we don't claim that any bug is reliably exploitable.
-
-
Replying to @benhawkes
@benhawkes@grsecurity @happyfunstein which bugs do you claim to be not exploitable reliably (and based on what circumstances)?1 reply 0 retweets 0 likes -
Replying to @paxteam
@paxteam@grsecurity I don't think "reliably not exploitable" is a thing, but I think I know what you mean, so here goes...1 reply 0 retweets 0 likes -
Replying to @benhawkes
@paxteam@grsecurity Generally: when we can't conceive a path forward for exploitation, we won't report the bug as a security issue.1 reply 0 retweets 0 likes -
Replying to @benhawkes
@paxteam@grsecurity Some current userland examples are most unchecked allocation failures or stack recursions with small frame size.1 reply 0 retweets 0 likes -
Replying to @benhawkes
@paxteam@grsecurity Some current kernel space examples: OOM conditions, BUG checks. Even NULL/ZERO_SIZE_PTR dereference in most cases.1 reply 0 retweets 1 like
@paxteam @grsecurity I understand @grsecurity's complaint here, but I'm happy with our reporting threshold and I don't think we "oversell".
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.