New comment by tr32q423 in "Cloudflare Reverse Proxies Are Dumping Uninitialized Memory"

tr32q423 — Fri, 24 Feb 2017 00:34:01 +0000

The root cause is apparently coming from auto-generated code that causes buffer overrun:

    /* generated code */
    if ( ++p == pe )
        goto _test_eof;

With the help of Google, Yahoo, Bing and others, we found 770 unique URIs that had been cached and which contained leaked memory. Those 770 unique URIs covered 161 unique domains.

The examples in the report shows Uber, okcupid , etc. It would be good to know the full list, to know what password might have been compromised.

https://blog.cloudflare.com/incident-report-on-memory-leak-c...

Hacker News: tr32q423

New comment by tr32q423 in "Cloudflare Reverse Proxies Are Dumping Uninitialized Memory"