Date: Mon, 6 Jan 2025 18:48:14 +0800
From: James Watt <crispy.james.watt@gmail.com>
To: freebsd-security@freebsd.org
Subject: Re: Security Vulnerability - Action Required: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability may in your project
Message-ID: <CADUHo-XQSpyg0%2Bve1VAbxvfMjtHNdc0%2B71X7DWAo_DDDp4eKcg@mail.gmail.com>
In-Reply-To: <hot-notification-3422124074-d9190ca9c4ad4748704a672482366a29-1725660000@mailtrack.io>
References: <CADUHo-Xgk8HCo7bLUQXGNC%2BxNR6yNrZRVFk=zBxvRYgPLEyc_w@mail.gmail.com> <hot-notification-3422124074-d9190ca9c4ad4748704a672482366a29-1725660000@mailtrack.io>
next in thread | previous in thread | raw e-mail | index | archive | help
--0000000000002eab12062b075e00 Content-Type: text/plain; charset="UTF-8" Hi, Henrich Thank you for your reply about this issue which has been detected by our tools. Now I want to know your thoughts about our tool. When you have a chance, could you please take a look at our tool? Specifically, we're interested in understanding: 1. Do you feel the detection results from our tool help enhance the security of your project? 2. Would you be willing to let us regularly scan your project in the future to identify potential vulnerabilities? 3. Our tool works by collecting patches from existing publicly disclosed vulnerabilities in real-time and scanning target projects for the presence of identical code or similar logic. Do you have any suggestions for improving this vulnerability detection approach? Please feel free to tell me your thoughts, it's really important for us to improve our tool. Thank you! --0000000000002eab12062b075e00 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable <div dir=3D"ltr"><div dir=3D"ltr">Hi,=C2=A0 Henrich<div><p dir=3D"auto" style=3D"box-sizing:border-box;margin-top:0px">= <br class=3D"gmail-Apple-interchange-newline">Thank you for your reply abou= t this issue which has been detected by our tools. Now I want to know your = thoughts about our tool. When you have a chance, could you please take a lo= ok at our tool? Specifically, we're interested in understanding:</p><ol= dir=3D"auto" style=3D"box-sizing:border-box;padding:0px;margin-top:0px;mar= gin-bottom:0px"><li style=3D"box-sizing:border-box">Do you feel the detecti= on results from our tool help enhance the security of your project?</li><li= style=3D"box-sizing:border-box;margin-top:0.25em">Would you be willing to = let us regularly scan your project in the future to identify potential vuln= erabilities?</li><li style=3D"box-sizing:border-box;margin-top:0.25em">Our = tool works by collecting patches from existing publicly disclosed vulnerabi= lities in real-time and scanning target projects for the presence of identi= cal code or similar logic. Do you have any suggestions for improving this v= ulnerability detection approach?<br style=3D"box-sizing:border-box">Please = feel free to tell me your thoughts, it's really important for us to imp= rove our tool. Thank you!</li></ol><br class=3D"gmail-Apple-interchange-new= line"></div></div><br><img width=3D"0" height=3D"0" class=3D"mailtrack-img"= alt=3D"" style=3D"display:flex" src=3D"https://mailtrack.io/trace/mail/dba= 5a1794e2cb29e5f10b0819003d23e9c5b65c5.png?u=3D8536293"></div> --0000000000002eab12062b075e00--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CADUHo-XQSpyg0%2Bve1VAbxvfMjtHNdc0%2B71X7DWAo_DDDp4eKcg>