Critical Rust flaw enables Windows command injection attacks (bleepingcomputer.com) 32 points by mikece 2y ago ↗ HN
[–] watermelon0 2y ago ↗ Related to https://news.ycombinator.com/item?id=39983661. Multiple languages are affected.From the offical advisory:> The fix will be included in Rust 1.77.2, to be released later today.
[–] rymiel 2y ago ↗ Memory safe security vulnerabilities [–] ankurdhama 2y ago ↗ This has nothing to do with Rust. Its about how Windows CreateProcess API works.
[–] ankurdhama 2y ago ↗ This has nothing to do with Rust. Its about how Windows CreateProcess API works.
[–] TheCycoONE 2y ago ↗ Curious the article didn't mention any other language affected, when it was most. [–] [deleted] 2y ago ↗ (comment deleted)
5 comments
[ 2.9 ms ] story [ 24.3 ms ] threadFrom the offical advisory:
> The fix will be included in Rust 1.77.2, to be released later today.