2 matches found
Malicious code in xinference (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1d006f6a08c959393160456d4ace221fd165b6d609fc8356ebfb041979aef93d Versions 2.6.0, 2.6.1, 2.6.2 were compromised. Following a malicious pull request that exfiltrated sensitive data from the CI runner, three malicious PyPI...
Ruby: Arbitrary heap overread in strscan on 32 bit Ruby, patch included
ruby require 'strscan' x = 'x' 0x7FFFFFFE s = StringScanner.newx s.pos = 0x7FFFFFFD t = s.peek40000 t.eachbyte do |i| if i != 0 print i.chr end end Run: sh ./ruby r.rb | strings My output: @ ;@VTdBE...