46

"No way to prevent this" say users of only language where this regularly happens - 07/01/2024(xeiaso.net)

posted 3 months ago

by

onlinepersona@programming.dev

in

programmer_humor@programming.dev

21 commentshide report

A shitpost about languages that generate CVEs

Sort:

Hot Top Controversial New Old

You are viewing a single thread.

View all comments

[ - ]

rushaction@programming.dev

2 points

3 months ago

… the only language where 90% of the world’s memory safety vulnerabilities have occurred in the last 50 years

Yeah… That’s a shit post alright.

I’m not a C developer myself, but that’s just a low blow. Also, uncited ;).

report

reply

[ - ]

verstra@programming.dev

9 points

3 months ago

*

This is an overstatement, definitely. C is one of the few (mainstream) languages where memory safety vulnerabilities are even possible. So if you batch C and C++ together, they probably cover more than 90% of all the memory unsafe cove written in last 50 years, which is a strong implication that they will contribute to 90% of memory vulnerabilities.

All that said, memory vulnerabilities are about 65% of all high implact vulnerabilities on Chromium project^[1] and about 70% of vulnerabilities at Microsoft ^[2].

report

reply

[ - ]

calcopiritus@lemmy.world

1 point

3 months ago

So we’d only fix 70% of vulnerabilities by switching to rust? Not enough! Better keep writing C/C++!

report

reply

[ - ]

5C5C5C@programming.dev

6 points

3 months ago

Yeah the only way it would be that high is if it lumps C and C++ together. But at that point it may be an underestimate.

report

reply

Programmer Humor

!programmer_humor@programming.dev

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

Community stats

7K
Monthly active users
730
Posts
11K
Comments

Community moderators