oss-sec mailing list archives
Re: How serious is undefined behavior?
From: Xi Wang <xi.wang () gmail com>
Date: Mon, 13 Jul 2015 07:01:49 -0700
On Mon, Jul 6, 2015 at 9:17 AM, Hanno Böck <hanno () hboeck de> wrote:
However I wonder how practically relevant these issues are and also how much focus should be given to them. Do people have good examples where e.g. an invalid shift operation caused a real, severe security issue?
One interesting case with shift (not necessarily a security issue) was: http://blog.regehr.org/archives/767 You may also find more examples in the two papers: http://pdos.csail.mit.edu/papers/ub:apsys12.pdf http://pdos.csail.mit.edu/papers/stack:sosp13.pdf
Current thread:
- How serious is undefined behavior? Hanno Böck (Jul 06)
- Re: How serious is undefined behavior? John Haxby (Jul 06)
- Re: How serious is undefined behavior? Daniel Micay (Jul 06)
- Re: How serious is undefined behavior? Solar Designer (Jul 06)
- Re: How serious is undefined behavior? Alexander Cherepanov (Jul 09)
- Re: How serious is undefined behavior? Solar Designer (Jul 12)
- Re: How serious is undefined behavior? Alexander Cherepanov (Jul 13)
- Re: How serious is undefined behavior? Xi Wang (Jul 13)