undefined | Better HN

0 pointsMond_4mo ago0 comments

> The fact is, Rust addresses only one memory safe thing, and that is double free. If you don't understand why that is, you probably shouldn't talk about memory safety.

How does Rust not address use after free?

0 comments

Inityx4mo ago

Not to mention out-of-bounds access, uninitialized memory, invalid type casting, and a ton of insidious sources of undefined behavior

ActorNightly4mo ago

Most of these will usually make a program crash. Crashes are testable and not a memory safety issue. Exception handling was created specifically to deal with this.

ActorNightly4mo ago

Use after free is generally VERY hard to exploit. Double free can corrupt data structures more with control. Use after free is basically at the mercy of the allocator and program state, where whatever gets written to the same memory address may or may not be relevant.

There is a reason why most vulnerabilities these days are either higher level logic bugs, or things that require code execution on the machine.

j / k navigate · click thread line to collapse

0 pointsMond_4mo ago0 comments

> The fact is, Rust addresses only one memory safe thing, and that is double free. If you don't understand why that is, you probably shouldn't talk about memory safety.

How does Rust not address use after free?

0 comments

Inityx4mo ago

Not to mention out-of-bounds access, uninitialized memory, invalid type casting, and a ton of insidious sources of undefined behavior

ActorNightly4mo ago

Most of these will usually make a program crash. Crashes are testable and not a memory safety issue. Exception handling was created specifically to deal with this.

ActorNightly4mo ago

There is a reason why most vulnerabilities these days are either higher level logic bugs, or things that require code execution on the machine.

j / k navigate · click thread line to collapse