“无法避免”——唯一一种此类漏洞频发的编程语言的用户如是说
FreeBSD 项目披露了 CVE-2026-45250 漏洞,该漏洞源于 setcred(2) 系统调用中的内核栈溢出,可能导致任意代码执行。问题出在受影响组件由 C 语言编写——这是过去 50 年间全球 90% 内存安全漏洞发生的唯一语言,其项目出现安全漏洞的概率是其他语言的 20 倍。程序员们对此表示无可奈何,认为只要程序员不主动以稳健方式编写代码,内存安全漏洞就根本无法预防。
相关报道
The video discusses a moment where Joe Rogan unintentionally reveals concerns about AI-generated content and deepfakes, highlighting the growing issue of distinguishing real from synthetic media.
The video explores the concept of constructing an infinitely long sentence using only the word "buffalo," demonstrating how repetition and grammatical ambiguity can create a seemingly endless series of meaningful statements.
The article satirizes the recurring pattern of memory safety vulnerabilities in the C/C++ ecosystem, pointing out that after yet another critical flaw (CVE-2026-45584), developers express resignation, stating "no way to prevent this" despite such issues being common only in languages lacking memory safety guarantees.