Thomas Karpiniec on Nostr: Question for #golang nerds: I realise that data races are UB and in practice you can ...
Question for #golang nerds: I realise that data races are UB and in practice you can get partial writes, concurrent map use crash, etc., and in theory the worst is possible.
When it comes down to it though, has anyone ever used this to get a useful RCE exploit or something more troublesome/targeted than a crash?
#infosec
Published at
2024-09-16 23:48:58Event JSON
{
"id": "e1b4fee80487d98b268a6679e21784200669a1c5937247da195a8ec6f4da120e",
"pubkey": "7061bb6ff80a662f3eded29c9382e5b333ba0ff875b8a06433175875bb7455de",
"created_at": 1726530538,
"kind": 1,
"tags": [
[
"t",
"golang"
],
[
"t",
"infosec"
],
[
"proxy",
"https://social.octet-stream.net/users/thomask/statuses/113149905392415361",
"activitypub"
]
],
"content": "Question for #golang nerds: I realise that data races are UB and in practice you can get partial writes, concurrent map use crash, etc., and in theory the worst is possible.\n\nWhen it comes down to it though, has anyone ever used this to get a useful RCE exploit or something more troublesome/targeted than a crash?\n\n#infosec",
"sig": "74bb4977547945c79119521286dd24d02ffd6363b2172b3d520b4848ef3ee779de29e06d1487e559b6cd5da53c49636232e5b96035d284fa73d4e895e5b30028"
}
