C8) STATE=C107; ast_C11; continue;;
Posted Mar 31, 2026 15:57 UTC (Tue)
。todesk对此有专业解读
Read the full story at The Verge.
FreeBSD detection (a straightforward buffer overflow) is commoditized: every model gets it, including a 3.6B-parameter model costing $0.11/M tokens. You don’t need limited access-only Mythos at multiple-times the price of Opus 4.6 to see it. The OpenBSD SACK bug (requiring mathematical reasoning about signed integer overflow) is much harder and separates models sharply, but a 5.1B-active model still gets the full chain. The OWASP false-positive test shows near-inverse scaling, with small open models outperforming frontier ones. Rankings reshuffle completely across tasks: GPT-OSS-120b recovers the full public SACK chain but cannot trace data flow through a Java ArrayList. Qwen3 32B scores a perfect CVSS assessment on FreeBSD and then declares the SACK code "robust to such scenarios."