It's kind of ridiculous how few lines of code can trigger such a huge and comple... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cookiengineer on July 17, 2024 \| parent \| context \| favorite \| on: Jia Tan "JiaT75": Added error text to warning when... It's kind of ridiculous how few lines of code can trigger such a huge and complex discussion about thread safety, where almost all developers involved actually aren't really certain whether or not this can be exploited. I just wish people would stop writing C code for libraries that consume arbitrary data.

fooker on July 17, 2024 | [–]

Yes, please stop writing C and C++ code! (... and leave the high paying jobs to us of course)

SpaghettiCthulu on July 17, 2024 | [–]

In this case it doesn't matter whether it's C or Rust. Both languages, if using their default string formatting facilities, are vulnerable.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact