To be fair the linked patch is very sparse and even so not everyone reads C, or ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

IgorPartola on April 13, 2014 | parent | context | favorite | on: Use after free bug in OpenSSL

To be fair the linked patch is very sparse and even so not everyone reads C, or knows what the Heartbleed code looked like. I can guess at what this is because some kind people provided a few good links about how bad memory management in OpenSSL is handled.

yohanatan on April 13, 2014 | [–]

The patch also comes with an explanation of the bug which obviously does not align at all with either the short- or the long-winded explanations of Heartbleed.

yaur on April 13, 2014 | [–]

backstory here http://www.tedunangst.com/flak/post/analysis-of-openssl-free...

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact