Google's take on memory safety
Paulo Pinto
pjmlp at progtools.org
Fri Mar 8 19:01:06 UTC 2024
On Friday, 8 March 2024 at 17:20:22 UTC, monkyyy wrote:
> On Friday, 8 March 2024 at 14:16:14 UTC, Dukc wrote:
>> On Friday, 8 March 2024 at 09:09:12 UTC, Monkyyy wrote:
>>> Python and java, and js are not exactly safe languges, there
>>> no way to inturpt the high ranking as being coherently
>>> designed around safety.
>>
>> They are safe languages, as far as the common definition goes
>
> https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=javascript
>
> "5146 CVE Records"
>
> https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=c
>
> "1748 CVE Records"
>
> Python and js have more mechanisms to run giant stacks of
> insane code of depenency hell and that insane to call safe; I'm
> pretty sure js is the main cause of malware spreading, but if
> it isn't it's up there.
Those exploits fail under the 30% attack surface, after we get
rid of the 70% caused by memory corruption exploits.
More information about the Digitalmars-d
mailing list