Follow

Finite State assessment of firmwares finitestate.io/wp-content/uplo
Just read the 2-page key findings (and then go hide under a blanket, shivering).

@zacchiro brrrrrrrrrrrr and they even dare to accuse opensource

@efraim @zacchiro

On dozens of occasions, Huawei engineers disguised known unsafe functions (such as memcpy) as the “safe” version (memcpy_s) by creating wrapper functions with the “safe” name but none of the safety checks. This leads to thousands of vulnerable conditions in their code.

bah.

Sign in to participate in the conversation
Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!