TechEcho

6 comments

saulrhalmost 8 years ago

I misparsed this as "A bug regarding an OOB write in systemd has been resolved by deployment of a crafted TCP payload" and was hoping for a legendary tale of deeply grey-hat infrastructure hack-patching.

stepik777almost 8 years ago

Remind me, why are such critical system components as systemd are still being written in a memory unsafe language?

评论 #14691202 未加载

评论 #14691426 未加载

评论 #14692014 未加载

评论 #14691545 未加载

评论 #14693641 未加载

评论 #14691654 未加载

评论 #14691479 未加载

detaroalmost 8 years ago

previously: <a href="https://news.ycombinator.com/item?id=14652787" rel="nofollow">https://news.ycombinator.com/item?id=14652787</a> (5 days ago, 192 points, 237 comments)

dogecoinbasealmost 8 years ago

Sorry, but this is not a standard TCP payload. I think the bug is in the library that made the packet, not with systemd. They should fix their library.

评论 #14691250 未加载

评论 #14691263 未加载

评论 #14691669 未加载

tyingqalmost 8 years ago

<i>"A patch to resolve this has been provided..."</i><p>The patch resolves the resolver. Heh.

yuhongalmost 8 years ago

OT, but I wonder why Poettering chose Kay Sievers to work on systemd in the first place.

评论 #14696957 未加载

Out-of-bounds write in systemd-resolved with crafted TCP payload

6 comments

Out-of-bounds write in systemd-resolved with crafted TCP payload

6 comments