Versions Compared

Old Version 13

changes.mady.by.user Daniel Sniffin

Saved on

compared with

New Version 14

changes.mady.by.user Daniel Sniffin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

There are several versions of R installed on the HPC Cluster. Users can install their own packages in their home directories.

Vulnerability

Note

A recent vulnerability in the R language has been found.

Note

R Programming Language implementations are vulnerable to arbitrary code execution during deserialization of .rds and .rdx files

The vulnerability allows for arbitrary code to be executed directly after the deserialization of untrusted data. This vulnerability can be exploited through RDS (R Data Serialization) format files and .rdx files. An attacker can create malicious RDS or .rdx formatted files to execute arbitrary commands on the victim's target device.

Starting from r/4.4.0, R addresses the vulnerability and we will be regularly updating R. Any version of R before 4.4.0 will have the vulnerability and we recommend using the latest R version available on HPC if possible.

Rstudio cannot be used on HPC

...