|
|
|
|
|
|
by concede_pluto
3303 days ago
|
|
|
(vouched) On #1, having just stumbled across a deserializer that can be commanded to allocate a 2^63 byte buffer, I agree 110%. On #2, the problem is that the standard says things like "walking off the end of an array is undefined behavior" and "use after free is undefined behavior" yet we don't seem to have any programmers who can be trusted to reliably avoid these problems with zero runtime checking. |
|
|