Many of the Java security bugs are in Java code. Relevant to this discussion, "J... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tedunangst on March 17, 2015 \| parent \| context \| favorite \| on: Would Rust have prevented Heartbleed? Another look Many of the Java security bugs are in Java code. Relevant to this discussion, "Jetbleed". The many other SSL breaks in Java. A variety of issues involving deserialization of untrusted data, ala Rails yaml bug. Bugs in the JVM itself are more the exception than the rule.

diroussel on March 27, 2015 [–]

What is jetbleed? Searching google for it brings me back to your comment!

diroussel on March 30, 2015 | [–]

Ah it, was called JetLeak -- http://blog.gdssecurity.com/labs/2015/2/25/jetleak-vulnerabi...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact