Many of the Java security bugs are in Java code. Relevant to this discussion, "J... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

tedunangst on March 17, 2015 | parent | context | favorite | on: Would Rust have prevented Heartbleed? Another look

Many of the Java security bugs are in Java code. Relevant to this discussion, "Jetbleed". The many other SSL breaks in Java. A variety of issues involving deserialization of untrusted data, ala Rails yaml bug. Bugs in the JVM itself are more the exception than the rule.

diroussel on March 27, 2015 [–]

What is jetbleed? Searching google for it brings me back to your comment!

diroussel on March 30, 2015 | [–]

Ah it, was called JetLeak -- http://blog.gdssecurity.com/labs/2015/2/25/jetleak-vulnerabi...

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact