#cybersecurity
threaded - newest
The dev appears to think this is a fake exploit generated by LLM/AI
sourceforge.net/p/sevenzip/bugs/2539/
Based off a small technicality with one of the comments in the code. The “function” referenced is actually a macro.
It’s nonsense:
xcancel.com/Seifreed/status/1874245336291488179
The LZMA implementation already validates bounds elsewhere (bufLimit). If p->buf exceeds its limit, the program aborts the decompression safely. 🚫 The claim of unchecked memory access is baseless.
threaded - newest
The dev appears to think this is a fake exploit generated by LLM/AI
sourceforge.net/p/sevenzip/bugs/2539/
Based off a small technicality with one of the comments in the code. The “function” referenced is actually a macro.
It’s nonsense:
xcancel.com/Seifreed/status/1874245336291488179