Lmst
Login

#patchdiffing

clearbluejarclearbluejar@infosec.exchange
2024-04-10

Hot of the #ghidriff #patchdiffing press for April 2024 we have CVE-2024-26219 in HTTP.sys 🔥

MSRC just started publishing CWE info! For this CVE we have a "CWE-476: NULL Pointer Dereference" 👀

See if you can find it 🧐

Hint: "UxLastMdlChunkNullFix"

gist.github.com/clearbluejar/a

clearbluejarclearbluejar@infosec.exchange
2024-01-12

hello 2024!

Hot off the #ghidriff #patchdiffing press we have the January 9, 2024—KB5034122 Windows 10 22H2 x64 kernel update ...
gist.github.com/clearbluejar/0 🔥

Side by side view is here: diffpreview.github.io/?0e52d80 👀

This month the kernel fixes include CVE-2024-20698 ... as there are not too many changes, perhaps we find the root cause?

Take at look this function... gist.github.com/clearbluejar/0 🧐

Hint: It rhymes with "vintager afterglow".

clearbluejarclearbluejar@infosec.exchange
2023-12-13

Hot off the #ghidriff #patchdiffing press, we have the December Windows 11 22H2 x64 kernel security update KB5033375: gist.github.com/clearbluejar/4 🧐

Side-by-side view here: diffpreview.github.io/?4f0c979 👀

clearbluejarclearbluejar@infosec.exchange
2023-11-16

Hot off the #ghidriff #patchdiffing press we have November's Windows 11 22H2 x64 kernel update KB5032190:
gist.github.com/clearbluejar/0 🧐

Side by side view is here: diffpreview.github.io/?02fc449 👀

clearbluejarclearbluejar@infosec.exchange
2023-11-03

ghidriff v0.5.1 - usability updates, improved automated testing , and bug fixes 🪲

- github workflows now test a matrix of devcontainers across versions of python, Ghidra, and Java 🔥

github.com/clearbluejar/ghidri

#patchdiffing #ghidra #githubactions

clearbluejarclearbluejar@infosec.exchange
2023-10-20

Hot off the #ghidriff #patchdiffing press we have October's Windows 11 22H2 kernel Update KB5031354...

gist.github.com/clearbluejar/5 👀

Joxean Koret (@matalaz)joxean
2023-10-15

The support for finding fixed signedness issues in is working (to highlight potentially fixed vulnerabilites):

A signed to unsigned check changed in ARM.A signed to unsigned check changed in x86.
clearbluejarclearbluejar@infosec.exchange
2023-10-11

say hello to ghidriff 🔥

#ghidra #patchdiffing #Python

github.com/clearbluejar/ghidri

Joxean Koret (@matalaz)joxean
2023-10-11

Any cool bug on this Patch Tuesday? Anything cool to diff with and enhance the ability to try to find patched vulnerabilities?

Baklava Monsterant0inet@infosec.exchange
2023-10-11

Introducing #ghidriff: a Python Command-Line Ghidra Binary Diffing Engine

#ghidra #patchdiffing #python

github.com/clearbluejar/ghidri

Joxean Koret (@matalaz)joxean
2023-09-30

Did you know that detects patch diffing sessions and tries to help finding where vulnerabilities were fixed? Here are some examples for CVE-2020-1350 and CVE-2023-28231.

Diaphora showing the exact place where CVE-2020-1350 was fixed.Diaphora showing the exact place where CVE-2023-28231 was fixed.
raptor :C_H:raptor@infosec.exchange
2023-01-26

Very well written #Windows #patchdiffing and #nday #exploitation walkthrough ✊

Dissecting and Exploiting TCP/IP RCE #Vulnerability EvilESP (CVE-2022-34718)

// by @chompie1337

securityintelligence.com/posts

List of matched functions sorted by similarityDecompilation output of Ipv6ReassembleDatagramDecompilation output of IppReceiveESPCVE-2022-34718 PoC

Client Info

Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst