Re: Is this the ultimate stack-smash fix?

From: Manfred Spraul (manfred@colorfullife.com)
Date: Thu Feb 15 2001 - 10:29:49 EST

Next message: Jeremy Jackson: "Re: Is this the ultimate stack-smash fix?"
Previous message: Martin Rode: "2.4.1 crashes every two days, oopses included"
In reply to: Eric W. Biederman: "Re: Is this the ultimate stack-smash fix?"
Next in thread: Jeremy Jackson: "Re: Is this the ultimate stack-smash fix?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"Eric W. Biederman" wrote:
>
> But the gcc bounds checking work is the ultimate buffer overflow fix.
> You can recompile all of your trusted applications, and libraries with
> it and be safe from one source of bugs.
>

void main(int argc, char **argv[])
{
        char local[128];
        if(argc > 2)
                strcpy(local,argv[1]);
}

Unless you modify the ABI and pass the array bounds around you won't
catch such problems, and I won't even mention unions and

struct dyn_data {
int len;
char data[];
}

--
	Manfred
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Jeremy Jackson: "Re: Is this the ultimate stack-smash fix?"
Previous message: Martin Rode: "2.4.1 crashes every two days, oopses included"
In reply to: Eric W. Biederman: "Re: Is this the ultimate stack-smash fix?"
Next in thread: Jeremy Jackson: "Re: Is this the ultimate stack-smash fix?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Feb 15 2001 - 21:00:26 EST