rmflight, 28 days ago @hrbrmstr They say that 4.4.0 this particular exploit is fixed. I didn't see anything in the NEWS, but went digging in the source. A commit last month shows that a commit to serialize.c was made, to return an error instead of a promise. Wonder if that's the fix? https://github.com/wch/r-source/commit/c06f7f2518673a75f9b36f2af9caf7b69ab4952e
@hrbrmstr They say that 4.4.0 this particular exploit is fixed. I didn't see anything in the NEWS, but went digging in the source. A commit last month shows that a commit to serialize.c was made, to return an error instead of a promise.
Wonder if that's the fix?
https://github.com/wch/r-source/commit/c06f7f2518673a75f9b36f2af9caf7b69ab4952e