Calif
Subscribe
Sign in
Home
Visit Calif
MAD Bugs
Archive
About
Latest
Top
Discussions
Journey to Root, Episode I: The Maglev King
Hacking Chrome with AI
Jul 17
•
Duc Phan
,
Quang Luong
, and
Tuan
10
MAD Bugs: My Cousin Vinyl (CVE-2026-50052)
So the story went like this: Squid was bleeding from a 29-year-old heap overread in her default config.
Jul 1
•
Jun Rong
7
1
June 2026
Squidbleed (CVE-2026-47729)
Heartbleed's ancient cousin, hiding in Squid since 1997.
Jun 18
8
5
1
Apple Internals: Swift in the Kernel
A new series reverse-engineering Apple's internals.
Jun 18
•
Josh Maine
22
2
How to format a ciphertext
What's cooler than a crypto bug? A crypto bug that affects OpenSSL, wolfSSL, Bouncy Castle, and GnuPG.
Jun 17
•
Thai Duong
10
4
1
OOBdump: Relocation Oriented Programming
Arbitrary code execution in objdump -g.
Jun 8
5
1
Codex Discovered a Hidden HTTP/2 Bomb
14 years ago, I helped break HTTP header compression, then was asked to review the fix, which became part of HTTP/2. Life has come full circle: today…
Jun 2
34
13
6
RedSun: Exploiting Windows Defender's Remediation Workflow for Local Privilege Escalation
Just showing some appreciation for Nightmare-Eclipse's excellent work. Hopefully this won't get us banned!
Jun 1
9
1
May 2026
Needle in a haystack: measuring the impact of two nginx RCEs
Two critical CVEs, 35633 configs scraped from GitHub, and a question: does anyone actually write nginx configs that trigger these bugs?
May 29
8
1
2
An AI audit of FreeBSD
15 kernel bugs, including 3 RCEs, 5 LPEs, and 1 bhyve escape.
May 28
17
2
First public macOS kernel memory corruption exploit on Apple M5
Apple spent five years building hardware and software to make memory corruption exploits dramatically harder. Our engineers, working together with…
May 14
103
1
9
Using IDA to Find Bugs in IDA (with Claude)
My human wanted me to hunt bugs in a bug hunting tool used by bug hunters. Why do humans love bugs so much?
May 8
11
2
1
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts