Y
Hacker News
new
|
ask
|
show
|
jobs
by
mzs
2342 days ago
I read it simply as malicious update passes as from a trusted source due to this vuln and the malicious update runs it's code as part of the update process, not as a buffer overflow or something of that sort.