View Single Post
  #1   (View Single Post)  
Old 20th April 2017
beiroot beiroot is offline
Shell Scout
 
Join Date: Sep 2016
Posts: 86
Default RCE in Linux Kernel via UDP packet

Ok, so most of you probably already know this:

https://www.cvedetails.com/cve/CVE-2016-10229/

What do you think of this bug?

I read a puzzling comment on one of the sec forums saying something like "it's not a bug, it's an NSA backdoor. A good programmer would never write a code in such a stupid manner. I really wonder why Linus would let such bug through."

I am not a kernel, nor a C developer myself, so I can't really comment whether this is reasonable or just a buffoonery. What do you think?

And my final question is, half a joke half seriously, why such a bug is not possible in OpenBSD kernel?

Last edited by beiroot; 20th April 2017 at 03:17 PM. Reason: typo
Reply With Quote