Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
fulafel
6 days ago
|
parent
|
context
|
favorite
| on:
FFmpeg to Google: Fund us or stop sending bugs
There's no exploit on the bug report at least, unless you consider the crash reproducer one.
iscoelho
6 days ago
[–]
UAF bugs lead to RCE exploit chains.
reply
fulafel
6 days ago
|
parent
[–]
They can if someone manages to develop an exploit. Let's not confuse vulnerabilities and exploits.
reply
codedokode
6 days ago
|
root
|
parent
[–]
This bug might lead to vulnerability and that's enough. It makes no sense to waste lot of time and research whether it is possible or not - it is faster to remove the buggy codec nobody needs or make a fix.
reply
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
