Someone popped http://Hipchat.com through a 3rd party library: https://blog.hipchat.com/2017/04/24/hipchat-security-notice/ … interested to see if/how this develops.
-
-
Replying to @pedramamini
Based on the patch, I suspect it's ghostscript dSAFER trickery discovered by
@taviso. http://seclists.org/oss-sec/2016/q4/29 …@troyhuntpic.twitter.com/YBQ2gDBucI
3 replies 33 retweets 59 likes -
Replying to @wdormann @pedramamini and
wait, how do you connect that? I see nothing in hipchat's blogpost indicating it is related to ghostscript
2 replies 1 retweet 0 likes
Replying to @hanno @pedramamini and
A little more officially: http://seclists.org/oss-sec/2017/q2/148 …
6:43 AM - 29 Apr 2017
0 replies
0 retweets
2 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.