Jeena@piefed.jeena.net to

Opensource@programming.devEnglish · 12 days ago

Fake AI Buffer Overflow Risk in Curl report

cross-posted to:
hackernews@lemmy.bestiver.se

76

Fake AI Buffer Overflow Risk in Curl report

Jeena@piefed.jeena.net to

Opensource@programming.devEnglish · 12 days ago

cross-posted to:
hackernews@lemmy.bestiver.se

curl disclosed on HackerOne: Buffer Overflow Risk in Curl_inet_ntop...

*Curl is a software that I love and is an important tool for the world. * *If my report doesn't align, I apologize for that.* The `Curl_inet_ntop` function is designed to convert IP addresses from binary format to human-readable string format, supporting both IPv4 and IPv6. It internally delegates to `inet_ntop4` for IPv4 addresses and `inet_ntop6` for IPv6 addresses. However, insufficient...

Now, with the help of AI, it’s even easier to waste time of open source developers by creating fake security vulnerability reports.

Chat

Gamma@beehaw.org
link
fedilink
English
arrow-up
9·
12 days ago
And I thought the reports by self-taught vuln hunters were bad 😆 now we don’t even have them thinking for themselves

Opensource@programming.dev

opensource@programming.dev

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !opensource@programming.dev

A community for discussion about open source software! Ask questions, share knowledge, share news, or post interesting stuff related to it!

Credits

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

⠀

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

200 users / day
483 users / week
1.12K users / month
3.27K users / 6 months
6 local subscribers
1.52K subscribers
280 Posts
1.12K Comments
Modlog