YAML and security in Ruby
If the Ruby YAML implementation allocates and initializs the Ruby objects upon deserialization Since symbols in Ruby aren’t garbage collected, a hash can be crafted to crash the stack
Source: www.benjaminfleischer.com
Links relevant to my work and interests: IT, agile, startups, Internet, web development, databases, programming, design patterns, work motivation... (Popular topics)