Skip to content

base: Advertise linear time of readFloat

Ben Gamari requested to merge wip/T23538 into master

As noted in #23538, readFloat has runtime that scales nonlinearly in the size of its input. Consequently, its use on untrusted input can be exploited as a denial-of-service vector. Point this out and suggest use of read instead.

See #23538.

Merge request reports