Kid@sh.itjust.worksM to Cybersecurity@sh.itjust.worksEnglish · 9 days ago7-Zip Zero-Day Exploit Allegedly Leaked Onlinecybersecuritynews.comexternal-linkmessage-square3fedilinkarrow-up153arrow-down14
arrow-up149arrow-down1external-link7-Zip Zero-Day Exploit Allegedly Leaked Onlinecybersecuritynews.comKid@sh.itjust.worksM to Cybersecurity@sh.itjust.worksEnglish · 9 days agomessage-square3fedilink
minus-squarewizardbeard@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up7·9 days agoBased off a small technicality with one of the comments in the code. The “function” referenced is actually a macro.
minus-squareHackerJoe@sh.itjust.workslinkfedilinkEnglisharrow-up4·7 days agoIt’s nonsense: https://xcancel.com/Seifreed/status/1874245336291488179 The LZMA implementation already validates bounds elsewhere (bufLimit). If p->buf exceeds its limit, the program aborts the decompression safely. 🚫 The claim of unchecked memory access is baseless.
Based off a small technicality with one of the comments in the code. The “function” referenced is actually a macro.
It’s nonsense:
https://xcancel.com/Seifreed/status/1874245336291488179