HackerTrans
TopNewTrendsCommentsPastAskShowJobs

arkush

no profile record

comments

arkush
·hace 10 meses·discuss
> > Normally no one talks anymore about things like buffer overflows, use after free,... since years

> Some of the biggest vulnerabilities of recent years (e.g. Heartbleed) were out-of-bounds access.

If I understand the Heartbleed bug correctly, it did not involved buffer overflows. It was a logical bug where they "trusted" the user-provided payload length (that can be much larger than the actual payload) and allocated the response buffer accordingly without zeroing it (malloc vs calloc). The "trash" in the uninitialized memory turned out to be quite valuable.

"xkcd: Heartbleed Explanation":

https://xkcd.com/1354/

"Add heartbeat extension bounds check.":

https://github.com/openssl/openssl/commit/731f431497f463f3a2...
arkush
·hace 3 años·discuss
> They are manually aimed, right?

January 6, 2024:

"Defence Intelligence of Ukraine shares footage of the targeting of two Russian Pantsir-S1 air defence systems. Looks like loitering munition was used. As said, today in the Belgorod region of Russia."

Source tweet:

https://twitter.com/bayraktar_1love/status/17437042635308319...

Original source is the Main Directorate of Intelligence's Telegram channel (in Ukrainian):

https://t.me/DIUkraine/3288

Notice yellow rectangles that are visible around the targets in the video.

It seems that AI-aiming was used at the final parts of the approach trajectories, after loss of communications with the drones.
arkush
·hace 3 años·discuss
Archive current page with Internet Archive's The Wayback Machine:

  javascript:void(open("https://web.archive.org/save/" + document.location))
Archive current page with archive.today:

  javascript:void(open("https://archive.ph/?run=1&url=" + encodeURIComponent(document.location)))
Search Google Cache for current page:

  javascript:void(open("https://webcache.googleusercontent.com/search?q=cache:" + document.location))
Open current Reddit post in Reveddit:

  javascript:void(open("https://www.reveddit.com/" + document.location.pathname))