undefined | Better HN

0 pointsjosefx1mo ago0 comments

I heard they once created an entire language that would replace C++ in all their projects. Obviously they never rewrote Chrome in Go.

> 10s of billions are spent to try to get Chromium to not have these vulnerabilities, using those tools. And here we are.

Shouldn't pages run in isolated and sandboxed processes anyway? If that exploit gets you anywhere it would be a failure of multiple layers.

0 comments

stackghost1mo ago

They do run in a sandbox, and this exploit gives the attacker RCE inside the sandbox. It is not in and of itself a sandbox escape.

However if you have arbitrary code execution then you can groom the heap with malloc/new to create the layout for a heap overflow->ret2libc or something similar

staticassertion1mo ago

The ITW exploit has some sort of sandbox escape. My money is on a kernel exploit, but there are other options - universal XSS, IPC, etc. Kernel vuln is most likely by far imo.

Chromium uses probably the single most advanced sandbox out there, at least for software that users are likely to run into.

StilesCrisis1mo ago

I don't think Go was ever planned to completely overtake C++. It is still a garbage collected language at the end of the day.

tgv1mo ago

I think the parent tries to refer to Carbon: https://en.wikipedia.org/wiki/Carbon_(programming_language)

josefxOP1mo ago

I actually wasn't aware of that language. It was more a reference to the overblown claims Pike made in the early days of Go, where he presented it as the c++ replacement for everything Google.

1 more reply

pjmlp1mo ago

Many people enjoy playing games, and video productions, written in a garbage collected C++ engine.

Go's main issue is its language design approach.

zbentley1mo ago

Say more?

1 more reply

j / k navigate · click thread line to collapse

0 pointsjosefx1mo ago0 comments

I heard they once created an entire language that would replace C++ in all their projects. Obviously they never rewrote Chrome in Go.

> 10s of billions are spent to try to get Chromium to not have these vulnerabilities, using those tools. And here we are.

Shouldn't pages run in isolated and sandboxed processes anyway? If that exploit gets you anywhere it would be a failure of multiple layers.

0 comments

stackghost1mo ago

They do run in a sandbox, and this exploit gives the attacker RCE inside the sandbox. It is not in and of itself a sandbox escape.

However if you have arbitrary code execution then you can groom the heap with malloc/new to create the layout for a heap overflow->ret2libc or something similar

staticassertion1mo ago

The ITW exploit has some sort of sandbox escape. My money is on a kernel exploit, but there are other options - universal XSS, IPC, etc. Kernel vuln is most likely by far imo.

Chromium uses probably the single most advanced sandbox out there, at least for software that users are likely to run into.

StilesCrisis1mo ago

I don't think Go was ever planned to completely overtake C++. It is still a garbage collected language at the end of the day.

tgv1mo ago

I think the parent tries to refer to Carbon: https://en.wikipedia.org/wiki/Carbon_(programming_language)

josefxOP1mo ago

I actually wasn't aware of that language. It was more a reference to the overblown claims Pike made in the early days of Go, where he presented it as the c++ replacement for everything Google.

1 more reply

pjmlp1mo ago

Many people enjoy playing games, and video productions, written in a garbage collected C++ engine.

Go's main issue is its language design approach.

zbentley1mo ago

Say more?

1 more reply

j / k navigate · click thread line to collapse