undefined | Better HN

story

0 pointspanpanna5y ago0 comments

I am fine with this schedule.

Unless someone is actively exploiting devices I would prefer a well tested patch to a rushed patch.

Note that this whole issue is due a previously rushed patch.

0 comments

nl5y ago

It wasn't due to a rushed patch - the patch just gave the Project Zero researcher an idea for where he should look.

There's no real way of being sure if it is being exploited. I guess no exploits had been detected a couple of days ago, but it's not uncommon for the way it gets detected it for someone to find the exploit software somewhere. That's how Project Zero found these iOS issues for example[1].

[1] https://googleprojectzero.blogspot.com/2019/08/a-very-deep-d...

j / k navigate · click thread line to collapse

0 comments

nl5y ago

It wasn't due to a rushed patch - the patch just gave the Project Zero researcher an idea for where he should look.

[1] https://googleprojectzero.blogspot.com/2019/08/a-very-deep-d...

j / k navigate · click thread line to collapse