This blogpost describes a DoS vulnerability in Haskell's
aesonpackage. We have followed appropriate procedure for responsible disclosure but the problem was not fixed, so now we are releasing this to the public in the hope that it may still be fixed afterall.
Source: JSON Vulnerability in Haskell's Aeson library an article by Tom Sydney Kerckhove.
Python is slow, and compiled languages like Rust, C, or C++ are fast. So when your application is too slow, rewriting some of your code in a compiled extension can seem like the natural approach to speeding things up.
Unfortunately, compiled extensions are sometimes actually slower than the equivalent Python code. And even when they’re faster, the performance improvement might be far less than you’d imagine, due to hidden overhead caused by two factors:
- Function call overhead.
- Serialization/deserialization overhead.
Let’s see where these hidden performance overheads comes from, and then see some solutions to get around them.
Source: The hidden performance overhead of Python C extensions, an article by Itamar Turner-Trauring.
There are a few things I think would be good to see implemented in and around Emacs, but I don’t know if I will find any time soon to do so properly. There is no pride in hiding ideas one thinks might be worthwhile, so I’d like to share them here.
Source: What I’d like to see done in Emacs, an article by Philip Kaludercic.