[31186] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Buffer overflow prevention

daemon@ATHENA.MIT.EDU (Miod Vallat)
Thu Aug 14 16:58:11 2003

Date: Thu, 14 Aug 2003 20:24:40 +0000
From: Miod Vallat <miod@online.fr>
To: bugtraq@securityfocus.com
Message-ID: <20030814202440.GA1465@openbsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20030814184743.GA3715@c9x.org>

>   ProPolice is not magical, though. There are plenty of cases where it is
> totally inefficient. To illustrate a very common one :
> 
[snip oflow of 5-byte buffer]

This particular case ``works'' because, by design, propolice will not
attempt to protect structures smaller than 16 bytes.

This can be changed by a simple gcc recompilation... and it's probably
worth doing.

Miod


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[31186] in bugtraq

Re: Buffer overflow prevention

daemon@ATHENA.MIT.EDU (Miod Vallat)Thu Aug 14 16:58:11 2003

daemon@ATHENA.MIT.EDU (Miod Vallat)
Thu Aug 14 16:58:11 2003