Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/hyc/statuses/116363054798931578">Howard Chu @ Symas (hyc@mastodon.social)'s status on Tuesday, 07-Apr-2026 20:01:31 JST</a><a href="https://mastodon.social/@hyc" title="hyc@mastodon.social"><img src="https://gnusocial.jp/avatar/29613-48-20221117233524.webp" width="48" height="48" alt="Howard Chu @ Symas" style="position: absolute; left: 0; top: 0;">Howard Chu @ Symas</a><div><a href="https://mastodon.social/@bagder/116363022959230849" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://mastodon.social/@bagder">@bagder</a> the other one we see is calling assert failures crashes. It's not a SEGV, there's no possibility of data exfiltration or RCE. There's no security exposure, it's just a bug. One that was anticipated hypothetically by the original developer, but whose final disposition wasn't decided upon way back when.</p><p>E.g. /* can this even happen? */</p><p>They toss in an assert, and it lives quietly in the  code for decades before someone definitively shows yes, it can happen...</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/6301487#notice-12413972">In conversation</a><time datetime="2026-04-07T20:01:31+09:00" title="Tuesday, 07-Apr-2026 20:01:31 JST">about a month ago</time> <span>from <span><a href="https://mastodon.social/@hyc/116363054798931578" rel="external" title="Sent from mastodon.social via ActivityPub">mastodon.social</a></span></span><a href="https://mastodon.social/@hyc/116363054798931578">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Howard Chu @ Symas (hyc@mastodon.social)'s status on Tuesday, 07-Apr-2026 20:01:31 JSTHoward Chu @ Symas
in reply to
- daniel:// stenberg://
@bagder the other one we see is calling assert failures crashes. It's not a SEGV, there's no possibility of data exfiltration or RCE. There's no security exposure, it's just a bug. One that was anticipated hypothetically by the original developer, but whose final disposition wasn't decided upon way back when.
E.g. /* can this even happen? */
They toss in an assert, and it lives quietly in the code for decades before someone definitively shows yes, it can happen...
In conversationabout a month ago from mastodon.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice