Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

9.4K
active users

hachyderm.io: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

Public
daniel:// stenberg://

the 500th hackerone report to #curl, received 20 hours ago, is a confirmed security issue. Severity LOW. To be announced with the next curl release on February 5, 2025.

This one hurts my ego. Again.

Public
Jeroen Massar

@bagder if it hurt your ego, it is a bug you will not make again and lesson learnt ;) I tend to read CVEs and more the fixes to learn what classes of bugs are being fixed so to avoid them myself; also do check if similar mistakes have not been made elsewhere if applicable

Cassandrich

@jeroen @bagder I wish more CVEs clearly identified the mistakes without digging thru 3+ levels of links rather than being filled with bureaucratic boilerplate crap.

Dec 31, 2024, 12:08 PM·Public·Web
0boosts·3favorites
Public
Haelwenn /элвэн/ :triskell:
@dalias @jeroen @bagder Luckily most CVEs I've seen have the commit URL, while for named-vuln-website it's much more horrible to have actual information.
Public
Cassandrich

@lanodan @bagder @jeroen That's for stuff with public source & version history, and not universal.. but it's better than it used to be.

Public
Haelwenn /элвэн/ :triskell:
@dalias @bagder @jeroen Right, I almost exclusively stick to floss so I rarely see the proprietary ones unless they're spectacularly bad (like the Palo Alto CVEs of 2024).
ExploreLive feeds
About