The rabbit hole I went down to make this video was amazing. I learned a ton about the 7z code base, software fuzzing, and maybe even myself.

🏫 COURSES 🏫 Learn to code in C at https://lowlevel.academy
🔥  SOCIALS  🔥 Come hang out at https://lowlevel.tv

Low Level Learning

A deep dive into a vulnerability found in the szip program, highlighting the steps taken to identify and triage over a thousand crashes. The author explains the process of fuzzing, the details of the integer underflow vulnerability, and the resulting potential for remote code execution. The bug was fixed in 7zip version 2407, and users are advised to update to this or a newer version to mitigate the security risk.

i found thousands of errors in this program. (you've probably used it)