[jchw]

I dunno what you’re saying; this kind of bug also proves difficult to avoid in large, security-critical projects like web browser engines.

[WalterBright]

D is very good at detecting dangling pointers into the stack at compile time.

[saagarjha]

Usually I think tooling is fairly good at catching these; I feel like misuse of dynamic memory allocation is usually harder to catch these days.

[pjmlp]

Provided developers actually bother to use it.

Most surveys place the use of such tooling around 11%, which is why all major OS vendors are pushing for hardware memory tagging, as by then is no way to avoid using them.

[saagarjha]

All three of the web browser engines are extremely heavy users of these tools; actually they are often the ones that develop and contribute to them.

[pjmlp]

A negligible amount of source code when placed against the amount of C , C++ and Objective-C written daily across the globe.

Those browsers are part of the 11% mentioned above.

[malf]

They’re talking specifically of pointers to the stack.