#LangSec Bugs of the Year Awards results are in (still from X :P)!
“The Most Impactful Parser Bug Of The Year Award is given to the WebP 0day” - awarded to @benhawkes
“The hardest to fix parser bug goes to the http://Binarly.io team for the LogoFAIL bugs.”
“The Best Parser Differential Awards goes to the inconsistent interpretation of YAML foods between Go and Rust.” - There is a link on the captured slide, and I’m pretty sure it’s @joern ‘s bug, but I can’t find a proper CVE anywhere…seriously people, references!
“The Weirdest Machine Award goes to Ian Beer @i41nbeer @benhawkes and @saelo@chaos.social”
Full thread with runner ups: