Reversing Apple’s syslogd Bug
fG (via Hacker News):
While Apple makes available the source code for many components used in OS X, most of the time there is a significant delay so we need to use binary diffing to find out the differences between the vulnerable and updated binary. The usual tool for this purpose is BinDiff but there is also a free alternative called Diaphora made by Joxean Koret. Both tools require IDA and on this post we are going to use Diaphora.
[…]
The developer of this particular piece of code made a mistake, and the fix can be as simple as adding a set of parenthesis[…]
