Not all of them. One was a use after free, which isn't related to buffer overflo... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

Moral_ on March 16, 2014 | parent | context | favorite | on: Pwn2Own 2014 Claims IE, Chrome, Safari and More Fi...

Not all of them. One was a use after free, which isn't related to buffer overflows. Two other ones are not clear what they were caused by:

By Mariusz Mlynski:

Against Mozilla Firefox, two vulnerabilities, one allowing privilege escalation within the browser and one bypassing browser security measures.

http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2O...

http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2O...

steveklabnik on March 16, 2014 | [–]

Whoops, thanks. That one is also not possible in Rust, so my point still stands. ;)

pcwalton on March 17, 2014 | [–]

Use-after-free is also prevented by Rust.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact