Still pissed at Broadcom for not issuing a security advisory for that kernel vulnerability I found a decade ago that affected the Raspberry Pi. They silently refactored the code instead.
The offending code is still in FreeBSD, even after I told them to update it, since I never got around to providing a PoC. I should write that PoC I guess, since afaik FreeBSD (and possibly NetBSD) on Raspberry Pi is still vulnerable.
Looks like the entire Linux side was cleaned up a decade ago...possibly by someone RPi-affiliated, not BCM-affiliated.
RPi also silently swept another kernel vulnerability I discovered under the rug around the same time. Anyway here's the patch for that userspace-triggerable OOB memory write that I reported that never got an advisory: https://github.com/raspberrypi/linux/commit/fef324cd632a3421140205754b8089b102b03f8f
endrift 🏳️⚧️
dch 
𝙹𝚘𝚎𝚕 𝙲𝚊𝚛𝚗𝚊𝚝 ♑ 🤪