Anthony Weems (@amlweems): "Excited to share this blog post about server-side memory corruption that my team exploited in production. Shout-out to @scannell_simon, @epereiralopez, and @thatjiaozi - this was a very fun project. :-) https://bughunters.google.com/blog/6220757425586176/cvr-the-mines-of-kakadum" | ab4n

Anthony Weems @amlweems

10 Sep 2024

Excited to share this blog post about server-side memory corruption that my team exploited in production. Shout-out to @scannell_simon, @epereiralopez, and @thatjiaozi - this was a very fun project. :-) bughunters.google.com/blog/6…

Blog: CVR: The Mines of Kakadûm

In this document, Google's Cloud Vulnerability Research team (CVR) presents vulnerabilities in a third-party JPEG 2000 image library called Kakadu. Exploiting memory corruption vulnerabilities...

bughunters.google.com

Sep 10, 2024 · 4:06 PM UTC

152