Déjà vu: Ghostly CVEs in my terminal title
Exploring a security bug in Ghostty that is eerily familiar. More..
31st December 2024
in
ANSI Terminal security in 2023 and finding 10 CVEs
A paper detailing how unescaped output to a terminal could result in unexpected code execution, on many terminal emulators. This research found around 10 CVEs in terminal emulators across common client platforms. More..
5th October 2023
in
NAT-Again: IRC NAT helper flaws
A Linux kernel bug allows unencrypted NAT'd IRC sessions to be abused to access resources behind NAT, or drop connections. Switch to TLS right now. Or read on. More..
1st September 2022
in
Vim blowfish encryption
...or why you shouldn't roll your own crypto More..
4th October 2014
in