Re: "Buffer Overflow" rant in Risks Digest

"...Perl is safe from the problem he describes..."

Perl (the language) is safe from buffer overflows, yes. But perl (the implementation) is written in C. It is not impossible for there to be a buffer overflow in your perl executable. And it is not impossible for a Perl program to accept inputs which would expose this overflow.

I'd say Perl programs are safe. As long as you don't try running them.

Comment on Re: "Buffer Overflow" rant in Risks Digest Select or Download Code

Replies are listed 'Best First'.
Re: Re: "Buffer Overflow" rant in Risks Digest by mpeppler (Vicar) on Jan 07, 2002 at 23:16 UTC
Indeed. And of course you have tons of XS code (in C, usually) that could very well have an unchecked strcpy or two (guilty of that myself, in one spot, now fixed)... Michael	[reply]