[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Unicode confusables and reordering characters considered harmful
|
From: |
Stefan Monnier |
|
Subject: |
Re: Unicode confusables and reordering characters considered harmful |
|
Date: |
Tue, 02 Nov 2021 15:12:56 -0400 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/28.0.50 (gnu/linux) |
> You cannot see those characters on a screenshot, for the same reason
> you cannot see any whitespace characters on a screenshot: they are
> only discernible when you move cursor through them. Which is why I
> asked how are you looking for them. If you are looking for them in a
> screenshot, you will never see them.
But that's the core of the vulnerability: if you just look at the screen
(and just scroll through it) you will have an incorrect understanding of
what the code does.
It's good that such bidi override chars are displayed as a thin space,
but it's mostly useful to make it possible to edit them (or to `C-x =`
on them), but I don't think it makes a significant different in terms of
the security issues introduced by the presence of those chars in the code.
Stefan
- Re: Unicode confusables and reordering characters considered harmful, (continued)
- Re: Unicode confusables and reordering characters considered harmful, Uwe Brauer, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Clément Pit-Claudel, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Eli Zaretskii, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Stefan Kangas, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Eli Zaretskii, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Stefan Kangas, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Eli Zaretskii, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful,
Stefan Monnier <=
- Re: Unicode confusables and reordering characters considered harmful, Eli Zaretskii, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Stefan Monnier, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, Eli Zaretskii, 2021/11/02
- Unicode confusables and reordering characters considered harmful, a simple solution, Daniel Brooks, 2021/11/02
- Re: Unicode confusables and reordering characters considered harmful, a simple solution, Eli Zaretskii, 2021/11/03
- Re: Unicode confusables and reordering characters considered harmful, a simple solution, Yuri Khan, 2021/11/03
- Re: Unicode confusables and reordering characters considered harmful, a simple solution, Eli Zaretskii, 2021/11/03
- Re: Unicode confusables and reordering characters considered harmful, a simple solution, Juri Linkov, 2021/11/03
- Re: Unicode confusables and reordering characters considered harmful, a simple solution, Gregory Heytings, 2021/11/03
- Re: Unicode confusables and reordering characters considered harmful, a simple solution, Eli Zaretskii, 2021/11/03