Категории

Unexpected CVE Shock: How a Curl Bug Became a 9.8 Severity Issue

Опубликовано: 19 Октябрь 2024
на канале: Nerding Out With Viktor
427
2

In this revealing clip from "Nerding Out with Viktor," Daniel Stenberg, the creator of Curl, shares the surprising story of how a seemingly minor bug in Curl unexpectedly became a high-severity CVE (Common Vulnerabilities and Exposures) issue. Daniel recounts how, without any prior notification, a CVE was suddenly made public, claiming a 9.8 severity rating for an "integer overflow" in Curl.

Caught off guard, Daniel describes his reaction to seeing the CVE, as Curl's team typically manages their own security vulnerabilities. They usually handle reports internally, fixing the issues, discussing the details, and making formal announcements. However, this particular CVE, with its severe rating, was a shock—especially considering the low risk the bug actually posed.

This clip highlights the challenges of managing security in open-source projects and the complexities that can arise when external parties handle vulnerability disclosures. Daniel's story is a must-watch for anyone interested in software security and the intricacies of CVE management.

Don't forget to like, comment, and subscribe for more deep dives into the world of software development and security!

play_arrow
15
0

Кавер-дуэт

Кавер-дуэт "Валеры" - Лимбо
play_arrow
183,969
6.1 тыс

Here's why Warzone 3 is so HATED

Here's why Warzone 3 is so HATED
play_arrow
144,642
1 тыс

Naiyo Lagda Dil| YashX Chiki VM |

Naiyo Lagda Dil| YashX Chiki VM |

play_arrow
50,970
1.2 тыс

Драконы, связанные крючком + Мк в описании видео

Драконы, связанные крючком + Мк в описании видео
play_arrow
1,946
47

Pilates Perm. Пилатес. Пермь. Малина Фитнес

Pilates Perm. Пилатес. Пермь. Малина Фитнес
play_arrow
564
16

CALLIGRAPHY ON IPAD TABLET [Arabic script on an abstract background]

CALLIGRAPHY ON IPAD TABLET [Arabic script on an abstract background]
play_arrow
74
4

hollow * diamond pattern in python | | star pattern | star pattern in python |

hollow * diamond pattern in python | | star pattern | star pattern in python |
play_arrow
2,959,141
105 тыс

Character Comparison ( 1898 - 1914 ) | Part 2

Character Comparison ( 1898 - 1914 ) | Part 2

Похожие видео
play_arrow
How AI Customizes Marketing: Tailored Emails Based on Purchase History

How AI Customizes Marketing: Tailored Emails Based on Purchase History
play_arrow
Defining SBOM Components: Tackling the Naming Problem

Defining SBOM Components: Tackling the Naming Problem
play_arrow
ChatGPT Changed Everything: The Moment AI Became Mainstream

ChatGPT Changed Everything: The Moment AI Became Mainstream
play_arrow
Why Cloud Computing Needs Hardware-Software Co-Design | Bryan Cantrill

Why Cloud Computing Needs Hardware-Software Co-Design | Bryan Cantrill
play_arrow
Will Open Source AI Overtake OpenAI? Luke Marsden's Bold Prediction!

Will Open Source AI Overtake OpenAI? Luke Marsden's Bold Prediction!
play_arrow
How the Commodore 64 Sparked a Lifelong Passion for Programming

How the Commodore 64 Sparked a Lifelong Passion for Programming
play_arrow
Exploring Zswap and RAM Doubling: Eben Upton's Insights

Exploring Zswap and RAM Doubling: Eben Upton's Insights
play_arrow
The Problem with Hardware Lying to Software | Bryan Cantrill

The Problem with Hardware Lying to Software | Bryan Cantrill
play_arrow
The Origin Story of Raspberry Pi: Eben Upton's Journey

The Origin Story of Raspberry Pi: Eben Upton's Journey
play_arrow
Building an Open Community: How Curl Lowers Barriers for Contributors

Building an Open Community: How Curl Lowers Barriers for Contributors
play_arrow
Exploring the Future of AI: Luke Marsden Unveils Helix and the Open Source Revolution

Exploring the Future of AI: Luke Marsden Unveils Helix and the Open Source Revolution
play_arrow
What Are SBOMs? Understanding the Origins and Importance

What Are SBOMs? Understanding the Origins and Importance
play_arrow
Unexpected CVE Shock: How a Curl Bug Became a 9.8 Severity Issue

Unexpected CVE Shock: How a Curl Bug Became a 9.8 Severity Issue
play_arrow
Join Our Weekly SBOM Meetups: All You Need to Know!

Join Our Weekly SBOM Meetups: All You Need to Know!
play_arrow
Understanding Network Boot Vulnerabilities: Insights from Christian Walter

Understanding Network Boot Vulnerabilities: Insights from Christian Walter
play_arrow
The Power of Community: How Curl Maintains a Steady Flow of Contributors

The Power of Community: How Curl Maintains a Steady Flow of Contributors
play_arrow
When Dell Blames Your Operating System | Bryan Cantrill

When Dell Blames Your Operating System | Bryan Cantrill
play_arrow
From 9.8 to 3.3: The CVE Scoring Controversy in Curl's Security

From 9.8 to 3.3: The CVE Scoring Controversy in Curl's Security
play_arrow
What is eBPF and Why It Matters: Liz Rice Explains

What is eBPF and Why It Matters: Liz Rice Explains
play_arrow
When Printers Use Curl for Internal Communication: A Bizarre Use Case

When Printers Use Curl for Internal Communication: A Bizarre Use Case
play_arrow
Integrating AI and SBOMs: The Importance of Machine-Readable Data

Integrating AI and SBOMs: The Importance of Machine-Readable Data
play_arrow
Daniel Stenberg's Hilarious Support Request: 'Fix My Instagram & Spotify!'

Daniel Stenberg's Hilarious Support Request: 'Fix My Instagram & Spotify!'
play_arrow
How DTrace Revolutionized System Monitoring | Bryan Cantrill

How DTrace Revolutionized System Monitoring | Bryan Cantrill
play_arrow
Radical Neutrality: US Government's Stance on SBOM Standards

Radical Neutrality: US Government's Stance on SBOM Standards