Why would you refuse to use a patch that deals with a valid PoC exploit?
If a random contributor posted an explanation of an exploit, showed it worked in an executable way, presented a patch and you could see that the exploit no longer worked - would you refuse to use the fix until the contributor showed how they figured it out?
alt Hacker News
You can't do that for me either.
Why would you refuse to use a patch that deals with a valid PoC exploit?
If a random contributor posted an explanation of an exploit, showed it worked in an executable way, presented a patch and you could see that the exploit no longer worked - would you refuse to use the fix until the contributor showed how they figured it out?