all InfoSec news
Bilingual Problems: Studying the Security Risks Incurred by Native Extensions in Scripting Languages. (arXiv:2111.11169v2 [cs.CR] UPDATED)
cs.CR updates on arXiv.org arxiv.org
Scripting languages are continuously gaining popularity due to their ease of
use and the flourishing software ecosystems that surround them. These languages
offer crash and memory safety by design, thus, developers do not need to
understand and prevent low-level security issues like the ones plaguing the C
code. However, scripting languages often allow native extensions, which are a
way for custom C/C++ code to be invoked directly from the high-level language.
While this feature promises several benefits such as increased …
code crash design developers ecosystems extensions languages low memory memory safety offer problems risks safety scripting security security issues security risks software understand