Podcast Episodes (Page 4)

Another Kernel TIPC Bug, MySQL, and Buggy Go

This week we discuss taint analysis and where to use it compared with fuzzing, a couple buggy code patterns in Go to be on the lookout for, and another remote stack-overflow in the Kernel TIPC module.
 

Bypassing Box MFA & Bad AES Key Generation

A new security-related humble bundle, MFA bypass in Box, and a a few older style vulnerabilities: lfi2rce, allow-list bypass with an @ sign, and insecure random number seeds.
 

Bad Code and Bad URLs

This week is a shorter episode looking at some bad code in mermaid.js and Moodle's Shibboleth plugin, and a bit of research regarding URL parsing issues.
 
2
3
4
5
6
7
8