Y
Hacker News
new
|
ask
|
show
|
jobs
by
monocasa
2640 days ago
By that logic we should be calling all vulnerabilities "backdoors" just in case.
2 comments
peteradio
2640 days ago
Perhaps you should because the end result is the same, shit code sinks ships. Somebody could have written it intentionally or somebody could have been a dumbshit. Doesn't matter to me because now my computer is compromised.
link
monocasa
2640 days ago
I mean, the term 'backdoor' has a connotation of intentionality. Unless you write perfect code 100% of the time, you probably rely on the difference.
link
bsder
2640 days ago
Freetype buffer overflow leads to privilege escalataion.
All code is security code.
link
monocasa
2640 days ago
Definitely don't disagree, but are the freetype developers being malicious when they leave in a bug?
link
gsich
2640 days ago
>All code is security code.
Debian disagrees. They are wrong to do so.
link