|
|
|
|
|
|
by neuroo
4450 days ago
|
|
|
The "model" makes reference of the model injection for memcpy. The modification made by the team is referenced in John's blog post "Their insight is that we might want to consider byte-swap operations to be sources of tainted data". As Andy said (and quoted), that's a modification that we need to evaluate overall to look at its impact in term of false positives (FP). It will probably be made available however under some options if it doesn't pass our acceptance tests for FP rate though... a bit too early to say. |
|
|