Show Notes

74 - Bad Patches, Fuzzing Sockets, & 3DS Hacked by Super Mario

00:00:32
On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commits
Additional Links: https://lore.kernel.org/linux-nfs/YH+zwQgBBGUJdiVK@unreal/ https://lore.kernel.org/linux-nfs/YH%2FfM%2FTsbmcZzwnX@kroah.com/ https://lore.kernel.org/lkml/CAK8KejpUVLxmqp026JY7x5GzHU2YJLPU8SzTZUNXU2OXC70ZQQ@mail.gmail.com/
00:15:18
Exploiting vulnerabilities in Cellebrite UFED and Physical Analyzer from an app's perspective
00:22:30
[Ubuntu] OverlayFS LPE
00:25:48
Synology DSM AppArmor synosearchagent misconfiguration
00:28:22
[GitLab] RCE via unsafe inline Kramdown options
00:35:25
[Homebrew] Broken parsing of Git diff allows an attacker to inject arbitrary Ruby scripts to Casks on official taps
Additional Links: https://blog.ryotak.me/post/homebrew-security-incident-en/
00:41:52
Remote code execution vulnerabilities in Cosori smart air fryer
Additional Links: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1217 https://talosintelligence.com/vulnerability_reports/TALOS-2020-1216
00:48:54
Source engine remote code execution via game invites [CVE-2021-30481]
01:00:40
Discussion: Should programs be banned from Hackerone
01:08:54
[Nintendo 3DS] Buffer Overflow in Super Mario Maker level decompression
01:15:12
PrusaSlicer Obj.cpp load_obj() out-of-bounds write vulnerability
01:20:12
Analysis of a use-after-free Vulnerability in Adobe Acrobat Reader DC
Additional Links: https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem
01:31:21
Designing sockfuzzer, a network syscall fuzzer for XNU
01:37:26
gaasedelen/tenet: A Trace Explorer for Reverse Engineers
01:40:41
tmp.0ut
01:44:35
Phœnix exploit / iOS 9.3.5
01:46:02
Experiences with Apple Security Bounty