Friday afternoon, is it?
The operating system had an integer signedness error that resulted in a heap overflow in the kernel vulnerability
I just got back from the pub, is it just me, or does that sentence not actually make sense?
Sysadmins ought to patch their FreeBSD systems after an irritating bug was found in the kernel. A programming blunder involving integer signedness can be exploited by a logged-in user to crash a system. With the right parameters, you can trick the kernel into clearing too much of its heap memory with zeros via the sysarch …
I just got back from the pub, is it just me, or does that sentence not actually make sense?
It's one of those "I shot an elephant in my pajamas" parsing issues that make English such a great language.
The vulnerability is of the "heap overflow in the kernel" type, rather than there being a "heap overflow" in the "kernel vulnerability."
While clumsy, it is grammatically correct. I suspect what has you flummoxed is the last part, which sounds like it should end after the word "kernel". The integer signedness fault, however, doesn't cause a heap overflow in the kernel, it makes the kernel VULNERABLE to a heap overflow.
Clear as mud.