|
From: | Bruno Haible |
Subject: | Re: Report 3 bugs discoverd in gawk involving gnulib |
Date: | Wed, 03 Aug 2022 19:38:02 +0200 |
Paul Eggert wrote: > don't give potential > attackers control of regular expressions that might cause excessive > stack growth. Agreed. This is called "input validation" and is mandatory for secure applications. [1]. [1] https://cwe.mitre.org/data/definitions/20.html
[Prev in Thread] | Current Thread | [Next in Thread] |