Question

Previous tossup - Next tossup

In March 2022, Tavis Ormandy reported a vulnerability in this library arising from an infinite loop in a modular square root function. Marco Peereboom equated this library to “monkeys throwing feces at the wall” in a rant titled “[this library] is written by (-5[1])monkeys”. A critical vulnerability in this library on Debian (“DEB-ian”) was hilariously caused by a developer commenting out a line because it was causing debugger warnings. OpenBSD forked this library into a “Libre” version (15[1])and Google forked it into a “Boring” version after a catastrophic 2014 (*) vulnerability that potentially affected (-5[1])70 percent of Internet traffic. A missing (10[1])bounds check in implementing the heartbeat protocol led to this library’s most notable vulnerability, called Heartbleed. For 10 points, name this cryptographic library that, as its name suggests, is a freely available implementation of (-5[1])a web security protocol and its successor TLS. ■END■ (10[2]0[1])

ANSWER: OpenSSL [prompt on “SSL” or “TLS” with “what library implements that protocol?”; reject “OpenSSH”]
<AW>
= Average correct buzz position
Conv. %Power %Average Buzz
80%20%113.75

Back to tossups

Buzzes

PlayerTeamOpponentBuzz PositionValue
Andrew SzetoI thought this was a Counter-Strike themed tournamentCarnegie Lemons42-5
Andrew HunterA TV Guide for NetheadsWhy does ACF have electrons do its work?7515
Michael CoatesEventually Munches All Computer StorageJAX guide -league -of -legends -lol -mortal -kombat91-5
Sky HongComputer Science: Going OutsideI Paused My Unique Game to Be Here9810
Luke Van De WegheThefoo132-5
Arnav SoodCarnegie LemonsI thought this was a Counter-Strike themed tournament14110
Kenny ZhangJAX guide -league -of -legends -lol -mortal -kombatEventually Munches All Computer Storage14110
Sam BraunfeldfooThe1410