Was it? I thought that only exacerbated the issue. malloc is free to return prev... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

MichaelGG on March 18, 2015 | parent | context | favorite | on: Would Rust have prevented Heartbleed? Another look

Was it? I thought that only exacerbated the issue. malloc is free to return previously used memory, is it not? Various systems might provide some last-chance efforts against this kinda thing, but the bug would still exist and be exploitable in some configurations, right?

moomin on March 18, 2015 [–]

Free by the standard, yes. In the average stdlib, not any more. In particular, Linux web servers would be safe, which would have rendered Heartbleed more of a "edge case platforms" kind of bug.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact