Remote Prompt Injection in GitLab Duo Leads to Source Code Theft (www.legitsecurity.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 24 May 23:48
comments (0)
The State of SSL Stacks (www.haproxy.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 07 May 00:26
comments (0)
How a Single Line Of Code Could Brick Your iPhone (rambo.codes)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 28 Apr 2025 05:20
comments (0)
Blasting Past Webp - An analysis of the NSO BLASTPASS iMessage exploit (googleprojectzero.blogspot.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 27 Mar 2025 16:45
comments (0)
CVE-2024-9956 - PassKey Account Takeover in All Mobile Browsers (mastersplinter.work)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 20 Mar 2025 05:23
comments (0)
Sign in as anyone: Bypassing SAML SSO authentication with parser differentials (github.blog)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 15 Mar 2025 19:37
comments (0)
Travertine (CVE-2025-24118) - An absolutely wild race condition in the macOS kernel (jprx.io)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 14 Mar 2025 23:14
comments (0)
Zen and the Art of Microcode Hacking (bughunters.google.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 08 Mar 2025 06:03
comments (0)
AMD: Microcode Signature Verification Vulnerability (github.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 03 Feb 2025 19:53
comments (0)
Bypassing disk encryption on systems with automatic TPM2 unlock (oddlama.org)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 17 Jan 2025 16:26
comments (0)
WorstFit: Unveiling Hidden Transformers in Windows ANSI! (blog.orange.tw)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 10 Jan 2025 14:54
comments (0)
A Tour of WebAuthn (www.imperialviolet.org)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 03 Jan 2025 08:29
comments (0)
38c3: Hutzelwutze in Hamburg (nebelwelt.net)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 03 Jan 2025 08:21
comments (0)
AES-GCM and breaking it on nonce reuse (frereit.de)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 04 Dec 2024 23:58
comments (0)
OpenSSH Backdoors (blog.isosceles.com)
in openbsd from tedu on 23 Aug 2024 21:21
comments (0)
Secure Randomness in Go 1.22 (go.dev)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 07 May 2024 06:15
comments (0)
PuTTY vulnerability vuln-p521-bias (www.chiark.greenend.org.uk)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 15 Apr 2024 20:42
comments (0)
The V8 Sandbox (v8.dev)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 04 Apr 2024 23:37
comments (0)
HTTP/2 CONTINUATION Flood: Technical Details (nowotarski.info)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 04 Apr 2024 23:35
comments (0)
AI bots hallucinate software packages and devs download them - even if potentially poisoned with malware (www.theregister.com)
in cybersecurity@infosec.pub from mozz@mbin.grits.dev on 01 Apr 2024 18:15
comments (0)
Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques (pwning.tech)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 26 Mar 2024 23:33
comments (0)
Preventing Cross-Service UDP Loops in QUIC (bughunters.google.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 26 Mar 2024 19:09
comments (1)
Gaining kernel code execution on an MTE-enabled Pixel 8 (github.blog)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 20 Mar 2024 07:36
comments (0)
Massively Popular Safe Locks Have Secret Backdoor Codes (www.404media.co)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 13 Mar 2024 17:09
comments (0)
Fonts are still a Helvetica of a Problem (www.canva.dev)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 06 Mar 2024 19:45
comments (0)
Lend Me Your Ear: Passive Remote Physical Side Channels on PCs (www.usenix.org)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 18 Jan 2024 17:35
comments (1)
When Random Isn't (orlp.net)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 16 Jan 2024 05:43
comments (0)
Operation Triangulation: What You Get When Attack iPhones of Researchers (securelist.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 27 Dec 2023 19:52
comments (0)
npm search RCE? - Escape Sequence Injection (blog.solidsnail.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 16 Dec 2023 00:59
comments (0)
Running the “Reflections on Trusting Trust” Compiler (research.swtch.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 26 Oct 2023 19:09
comments (0)
""?! ANSI Terminal security in 2023 and finding 10 CVEs (dgl.cx)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 20 Oct 2023 19:20
comments (0)
Getting RCE in Chrome with incomplete object initialization in the Maglev compiler (github.blog)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 18 Oct 2023 19:08
comments (0)
WebGPU Security Technical Report (chromium.googlesource.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 29 Sep 2023 01:24
comments (0)
Getting RCE in Chrome with incorrect side effect in the JIT compiler (github.blog)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 29 Sep 2023 00:06
comments (0)
The WebP 0day (blog.isosceles.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 21 Sep 2023 20:29
comments (0)
Capslock: What is your code really capable of? (security.googleblog.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 17 Sep 2023 02:39
comments (0)
Bluesky Exploits (github.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 13 Sep 2023 20:32
comments (0)
Grave flaws in BGP Error handling (blog.benjojo.co.uk)
in cloudsec from stsp on 29 Aug 2023 12:31
comments (1)
The Internet Worm Program: An Analysis (spaf.cerias.purdue.edu)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 25 Aug 2023 16:24
comments (0)
Smashing the state machine: the true potential of web race conditions (portswigger.net)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 10 Aug 2023 16:24
comments (0)
patch out kernel retpoline (marc.info)
in openbsd from tedu on 07 Aug 2023 18:44
comments (0)
Shamir Secret Sharing (max.levch.in)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 06 Aug 2023 21:38
comments (0)
Zenbleed (lock.cmpxchg8b.com)
in inks@inks.tedunangst.com from tedu@inks.tedunangst.com on 25 Jul 2023 01:47
comments (0)