Taking the first 4 bytes and just passing them straight into malloc? That’s terrifying, I hope this isn’t facing the open internet.
She did say that the fix includes making the client code less trusting :)
Taking the first 4 bytes and just passing them straight into malloc? That’s terrifying, I hope this isn’t facing the open internet.
She did say that the fix includes making the client code less trusting :)