Mac Developer: Extremely severe bug leaves dizzying number of software and devices vulnerable | Ars Technica
Extremely severe bug leaves dizzying number of software and devices vulnerable | Ars Technica "It's a big deal," Washington, DC-based security researcher Kenn White told Ars, referring to the vulnerability. "This is a core bedrock function across Linux. Things that do domain name lookups have a real vulnerability if the attacker can answer."
Hard to imagine a C-language API more central to security than name lookup. Code review anyone?
Labels: security flaw
Post a Comment