Comment by int_19h
4 months ago
If I understand correctly, this particular issue that you've linked to can only trigger a buffer overflow because the implementation of transpose() is written in unsafe Rust.
4 months ago
If I understand correctly, this particular issue that you've linked to can only trigger a buffer overflow because the implementation of transpose() is written in unsafe Rust.
Yes. So what? That doesn't count then?
Pretty much, yeah, because the whole point of unsafe Rust is to drop all the usual safety guarantees, at which point it's explicitly no safer than any other language with dangling pointers.
I get the point of unsafe. But if people replace C code with Rust code using unsafe, then the argument that this "eliminates a whole class of issues" is wrong. It is as simple as this.