https://grsecurity.net/~spender/sorry_kees.c
#infosec
https://t.co/PC1SbcMR5V
— Joanna Rutkowska (@rootkovska) November 23, 2017
So on the day of Kees' presentation, where he tried to drop a useless 0day on me and talk up how many upstream developers reviewed his code that did the same limitation *right*, I wrote an exploit of my own.
— grsecurity (@grsecurity) November 22, 2017
Kees, I'm sorry to tell you, you and your 7 reviewers didn't manage to do it right, and in fact you ended up producing something much worse than the bug you pointed out (which BTW wasn't actually your finding, and despite the 0day attempt, I had already fixed it in July)
— grsecurity (@grsecurity) November 22, 2017
This happened despite Kees' completely disrespectful presentation at the Linux Security Summit, comparing grsecurity to spam detection that only works because not everyone uses it, while he copy+pastes code from that very same codebase.
— grsecurity (@grsecurity) November 22, 2017
Now today I'm dropping real 0day on you: https://t.co/nnUNEYRloS
— grsecurity (@grsecurity) November 22, 2017
Firmware Security 