disaster! glibc, gcc4, FORTIFY_SOURCE
Arjan van de Ven
arjanv at redhat.com
Fri Apr 15 06:43:23 UTC 2005
> I agree, being a purist myself, but often the obscure overflows let the
> app continue apparently unharmed. When it's a core tool like /bin/sh
> that can occasionally be desirable.
well when a buffer overflow happens basically 3 things can happen
1) the overflow is limited to the padding space between variables on the
stack
2) the overflow also overwrites other variables on the stack
3) the overflow gets as far as overwriting the return address on the
stack
3) is the most common exploit vector. 2) sometimes can be exploited too,
but that is rare. HOWEVER 2) is also a case that leads to crashes or
data corruption. 1) is harmless of course.
Now... even when you don't hit a security exploit... do you *really*
want the risk of data corruption ???
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20050415/f8dd452a/attachment.sig>
More information about the fedora-devel-list
mailing list