This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: [Patch][BZ 14594] Demangle function pointers before testing them


On 09/20/2012 03:18 PM, Rich Felker wrote:
Wouldn't the opposite problem also happen: if the clear pointer is
NULL, the mangled pointer would be equal to the guard, which is random
and might point to anything. If it's possible to arrange for the clear
pointer to be NULL, it seems that nop slides would make this an easy
attack vector...
This argues that the instance in btowc ought to be fixed as well.

jeff


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]