From 4b75c5b5eaca901a9d07fb7292d92ebd8b08c044 Mon Sep 17 00:00:00 2001 From: B Smith Date: Wed, 5 Jul 2023 20:24:44 -0700 Subject: [PATCH 1/4] Update binary_artifacts.yaml enable allstar for experimental purposes --- .allstar/binary_artifacts.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.allstar/binary_artifacts.yaml b/.allstar/binary_artifacts.yaml index 56a21e753..32dccbc15 100644 --- a/.allstar/binary_artifacts.yaml +++ b/.allstar/binary_artifacts.yaml @@ -1,4 +1,4 @@ # Exemption reason: The binaries in this repository are (parts of) it security challenges of the Google CTF (g.co/ctf). # Exemption timeframe: permanent optConfig: - optOut: true + optOut: false From b38c3cdbad3bac9164a3a7d6b1d276c2df1488de Mon Sep 17 00:00:00 2001 From: B Smith Date: Wed, 5 Jul 2023 23:51:07 -0700 Subject: [PATCH 2/4] Update solve.py --- 2023/pwn-write-flag-where/solution/solve.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/2023/pwn-write-flag-where/solution/solve.py b/2023/pwn-write-flag-where/solution/solve.py index 24b345b1e..59234cfff 100644 --- a/2023/pwn-write-flag-where/solution/solve.py +++ b/2023/pwn-write-flag-where/solution/solve.py @@ -28,5 +28,5 @@ def remote_write(r,address,length): binary_base = int(output.split(b"\n")[8].split(b'-')[0],16) print("Binary base",hex(binary_base)) -remote_write(r,binary_base + 0x2198, 126) +remote_write(r,binary_base + 0x21E0, 126) print(r.recv()) From 2bebf8bb0dab31606362324db0a9329b55aaeacc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 17 Apr 2024 22:33:30 +0000 Subject: [PATCH 3/4] fix: 2017/quals/2017-misc-mindreader/app/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-6615672 --- 2017/quals/2017-misc-mindreader/app/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/2017/quals/2017-misc-mindreader/app/requirements.txt b/2017/quals/2017-misc-mindreader/app/requirements.txt index 62c81c479..d6f61fd6b 100644 --- a/2017/quals/2017-misc-mindreader/app/requirements.txt +++ b/2017/quals/2017-misc-mindreader/app/requirements.txt @@ -1,3 +1,3 @@ -gunicorn==19.7.1 +gunicorn==22.0.0 Flask==0.12.1 gevent From 275bf433057e1bc76c1e20d28e96a8a5cf1dd18c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 10 Jul 2024 22:15:20 +0000 Subject: [PATCH 4/4] fix: 2017/finals/2017-finals-re-corewars/Dockerfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-UBUNTU1604-SYSTEMD-1320131 - https://snyk.io/vuln/SNYK-UBUNTU1604-SYSTEMD-1320131 - https://snyk.io/vuln/SNYK-UBUNTU1604-SYSTEMD-1320131 - https://snyk.io/vuln/SNYK-UBUNTU1604-SYSTEMD-1320131 - https://snyk.io/vuln/SNYK-UBUNTU1604-BASH-542609 --- 2017/finals/2017-finals-re-corewars/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/2017/finals/2017-finals-re-corewars/Dockerfile b/2017/finals/2017-finals-re-corewars/Dockerfile index 5d962e4ce..ef8d815af 100644 --- a/2017/finals/2017-finals-re-corewars/Dockerfile +++ b/2017/finals/2017-finals-re-corewars/Dockerfile @@ -1,4 +1,4 @@ -FROM ubuntu:16.04 +FROM ubuntu:xenial-20201014 COPY corewars /corewars RUN mkdir /warrior