In my opinion (with unprofessional infosec-coloured glasses on), the official writeup for CVE-2024-27322 is very misleading and may lull people into false sense of security. A tour of the related R internals may be in order to understand the vulnerability better.
Type of Content
Please select to which section(s) your post belongs!
- [ ] Tutorials - R tutorials for how to use certain packages and tools (usually code is embedded)
- [x] Insights - Articles that talk about R and data science in general (usually no code embedded)
- [ ] R in Real World - Posts that discuss analyses that use R to analyze real-world data sets
- [ ] R in Organization - R use cases/events that showcase how organizations are utilizing or integrating R
- [ ] R in Academia - R use cases that showcase how Academia is utilizing R
- [ ] International - Non-English R related content
- [ ] Videos and Podcasts - Videos and Podcasts about R
- [ ] Resources - long posts, websites, books, slides, list, cheat sheets, or other learning resources in general that are more officially aggregated as a guide material
- [ ] Jobs - R Jobs
- [ ] New Packages and Tools - New packages and tools that have been created or published in the past two weeks.
- [ ] Updated Packages - New releases of tools and packages for R
- [ ] Call for Participation - New R groups, communities or competitions here.
- [ ] Upcoming Events - Interesting R-related events or call for Participation section.
- [ ] R Project Updates: it belongs here rather than the call for participation because it is about contribution to the R project itself and is a collaboration with R core.
### I'd like to propose an Image from my new content!
I would like to suggest an image. The SVG original is at . The 600px raster is at .
- [x] Yes, I proposed an image and resized it
- [ ] Yes, I proposed an image but didn't resized it
- [ ] No, I didn't propose an image
# Checklist:
- [x] My content is R-related
- [x] All images suggested are re-sized before has been added to the PR
- [x] I've submitted my content between Monday-Friday to allow for it to be voted by R Weekly editors for highlights
ColinFay
commented
5 months ago
Adding new content to R Weekly issue
In my opinion (with unprofessional infosec-coloured glasses on), the official writeup for CVE-2024-27322 is very misleading and may lull people into false sense of security. A tour of the related R internals may be in order to understand the vulnerability better.
Type of Content
Please select to which section(s) your post belongs!
- [ ] Tutorials - R tutorials for how to use certain packages and tools (usually code is embedded) - [x] Insights - Articles that talk about R and data science in general (usually no code embedded) - [ ] R in Real World - Posts that discuss analyses that use R to analyze real-world data sets - [ ] R in Organization - R use cases/events that showcase how organizations are utilizing or integrating R - [ ] R in Academia - R use cases that showcase how Academia is utilizing R - [ ] International - Non-English R related content - [ ] Videos and Podcasts - Videos and Podcasts about R - [ ] Resources - long posts, websites, books, slides, list, cheat sheets, or other learning resources in general that are more officially aggregated as a guide material - [ ] Jobs - R Jobs - [ ] New Packages and Tools - New packages and tools that have been created or published in the past two weeks. - [ ] Updated Packages - New releases of tools and packages for R - [ ] Call for Participation - New R groups, communities or competitions here. - [ ] Upcoming Events - Interesting R-related events or call for Participation section. - [ ] R Project Updates: it belongs here rather than the call for participation because it is about contribution to the R project itself and is a collaboration with R core. ### I'd like to propose an Image from my new content! I would like to suggest an image. The SVG original is at