[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: HFS+ specific vulnerability

Salvatore Bonaccorso <carnil@debian.org> writes:

> Maybe it is worth additionally checking with the reporter of the
> issues at TALOS, since
> http://www.talosintel.com/reports/TALOS-2016-0093/ claims that as well
> 9.20 is affected.

I asked here https://twitter.com/penguin_brian/status/739583514153091072

I note the following code which is the same (if my arithmetic is

const UInt32 kBufSize = (1 << 16);

In report this is:

const size_t kBufSize = kCompressionBlockSize; // 0x10000

However everything else looks very different.
Brian May <bam@debian.org>

Reply to: