Hacker News new | ask | show | jobs
by bjpbakker 2793 days ago
> the "Lazy FPU" vulnerability in 2018

You mean that OpenBSD discovered this issue by themselves when they were left out of an ongoing embargo?

Please explain to me how one can break an embargo they are not a part of in the first place?
1 comments
cperciva 2793 days ago
They didn't discover it themselves. If they had, how would they have known who was part of the embargo and when it was scheduled to end?

Someone leaked it to them.

link
bjpbakker 2793 days ago
“discovered by themselves” was intended to read “discovered outside of the embargo”.

Since you didn’t answer my question, let me try again. How can someone break an embargo they’re not a part of?

To me the mess back then was a very convenient distraction from the real issue, for Intel and their embargo.

link
cperciva 2793 days ago
OpenBSD didn't break the embargo. Whoever leaked it to them broke the embargo (and is very very lucky that nobody is saying who it was).
link
ryacko 2793 days ago
People make inferences all the time. In order to discover security vulnerabilities in the first place, you have to make inferences about how permissions or memory accesses are mishandled.
link