Re: Is there any security risk related to the use of the reader?

guile-user

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Is there any security risk related to the use of the reader?

From:	Christopher Lemmer Webber
Subject:	Re: Is there any security risk related to the use of the reader?
Date:	Wed, 28 Feb 2018 16:35:43 -0600
User-agent:	mu4e 0.9.18; emacs 25.3.1

Amirouche Boubekki writes:

> Seems like 'read' is unsafe against arbitrary code execution
> via srfi-10 and segfault or consume the whole memory on invalid
> input.

Yep...

I think the answer is to write a safer read in scheme.

[Prev in Thread]

Current Thread

[Next in Thread]

Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
- Re: Is there any security risk related to the use of the reader?, Matt Wette, 2018/02/25
  - Re: Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
- Re: Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
- Re: Is there any security risk related to the use of the reader?, Christopher Lemmer Webber, 2018/02/25
  - Re: Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
    - Re: Is there any security risk related to the use of the reader?, Christopher Lemmer Webber <=

Prev by Date: Re: optimizing lazy sequences: srfi-41 vs delayed continuation with values + promise vs delayed continuation with cons + lambda
Previous by thread: Re: Is there any security risk related to the use of the reader?
Index(es):
- Date
- Thread