Skip to main content

Search

Items tagged with: Hackerone


The original #hackerone report for #curl's CVE-2024-7264: ASN.1 date parser overread is now published:

hackerone.com/reports/2629968


the original #hackerone report for CVE-2024-0853 is now public: hackerone.com/reports/2298922


For details on the #curl PSL vulnerability, check out the #hackerone report. And if you use libpsl, double-check that your use is correct: hackerone.com/reports/2212193

Two mentioned projects in this report in particular should check their code.


We disclosed this #hackerone report against #curl when someone asked Bard to find a vulnerability, and it hallucinated together something:

hackerone.com/reports/2199174