Displaying 1 result from an estimated 1 matches for "hiddenlay".
Did you mean:
hiddenly
2024 May 01
2
De-serialization vulnerability?
All,
There seems to be a hullaboo about a vulnerability in R when deserializing untrusted data:
https://hiddenlayer.com/research/r-bitrary-code-execution
https://nvd.nist.gov/vuln/detail/CVE-2024-27322
https://www.kb.cert.org/vuls/id/238194
Apparently a fix was made for R 4.4.0, but I see no mention of it in the changes report:
https://cloud.r-project.org/bin/windows/base/NEWS.R-4.4.0.html
Is this real?...