LessWrong

AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty) (opens in new tab)

Covered by 3 sources See all sources covering this story including redmonk.com, alexrhickey.substack.comDiscussed on Hacker News and Hacker News

Published on January 27, 2026 8:21 PM GMT<br/><br/><p><i>This is a partial follow-up to </i><a href="https://www.lesswrong.com/posts/F5QAGP5bYrMMjQ5Ab/aisle-discovered-three-new-openssl-vulnerabilities-1"><i>AISLE discovered three new OpenSSL vulnerabilities</i></a><i> from October 2025.</i></p><p><strong>TL;DR:</strong> OpenSSL is among the most scrutinized and audited cryptographic libraries on the planet, underpinning encryption for most of the internet. They just announced 12 new zero-day...

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Covered in 3 articles

redmonk.com·

AI Slop and the Vulnerability Treadmill

Discussed on Hacker News
Feeds
alexrhickey.substack.com·

The bug bounty market is bifurcating: notes from finding 7 CVEs for $96

Discussed on Substack
Feeds
AISLE·

curl Adopts AISLE After its AI Agents Discovered 5 CVEs

Feeds

Keyboard Shortcuts

Navigation

Next / previous post
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Discover
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help