Messed up here. This initializes/validates the *struct* itself, not the input buffer. It's due to the padding between the 2 USHORT fields and the PVOID buffer. Still a good mitigation ;-)https://twitter.com/aionescu/status/995714827937968128 …
Replying to @aionescu
Haven't seen the code but I assume it's a countermeasure for bugs like https://bugs.chromium.org/p/project-zero/issues/detail?id=1458 …, 1513, 1516 etc?
7:49 AM - 15 May 2018
0 replies
0 retweets
5 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.