Security advisory for the standard library (CVE-2024-24576)
Security advisory for the standard library (CVE-2024-24576)
blog.rust-lang.org Security advisory for the standard library (CVE-2024-24576) | Rust Blog
Empowering everyone to build reliable and efficient software.
You're viewing a single thread.
10
comments
Were there actually any real-world use-cases affected by this? Do any of them not deserve to be named and shamed irregardless of this vulnerability?
If it was up to me, I would nuke the cmd custom implementation, leave some helpful compile error messages behind, and direct users to some 3rd party crates to choose from.
Doing such a regression on a Tier 1 target would be a really big blow to the language's reputation imo
What custom implementation? The escaping logic?
You've viewed 10 comments.