1. 9
  1.  

  2. 3

    Thanks for writing this up! It’s been disappointing to see some anti-mitigation (“just don’t write bugs”) folks pick this paper up as justification for their positions, given how ridiculous the assumptions made in it seem to be. But I guess it is possible (maybe?) that the authors do have something more interesting here and have just written it up poorly – no way to tell without more details and code. The creed of “PoC or GTFO”, while crude, seems appropriate.