Newsportal USENET - Re: A Famous Security Bug

Re: A Famous Security Bug

Sujet : Re: A Famous Security Bug
De : Keith.S.Thompson+u (at) *nospam* gmail.com (Keith Thompson)
Groupes : comp.lang.c
Date : 20. Mar 2024, 22:20:50

Autres entêtes

Organisation : None to speak of
Message-ID : <87zfus1txp.fsf@nosuchdomain.example.com>
References : 1 2 3
User-Agent : Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)

scott@slp53.sl.home (Scott Lurndal) writes:

Kaz Kylheku <433-929-6894@kylheku.com> writes:
On 2024-03-20, Stefan Ram <ram@zedat.fu-berlin.de> wrote:
A "famous security bug":
>
void f( void )
{ char buffer[ MAX ];
/* . . . */
memset( buffer, 0, sizeof( buffer )); }
>
. Can you see what the bug is?
>
I don't know about "the bug", but conditions can be identified under
which that would have a problem executing, like MAX being in excess
of available automatic storage.
>
Perhaps Stephan is under the mistaken assumption that
'buffer' devolves to a type of 'char *' when used
with the sizeof operator.

That was my first thought, but I think the idea (not clearly stated) is
that the /* . . . */ code stores sensitive information in buffer, and
the memset call is intended to clobber that information, but may be
elided since buffer is not explicitly used later. A malicious process
with access to the program's memory might be able to read that
information after f() has returned.

C23 adds memset_explicit() for this purpose.

--
Keith Thompson (The_Other_Keith) Keith.S.Thompson+u@gmail.com
Working, but not speaking, for Medtronic
void Void(void) { Void(); } /* The recursive call of the void */

Les messages affichés proviennent d'usenet.

Date	Sujet	#	Auteur
20 Mar 24	A Famous Security Bug	118	Stefan Ram
20 Mar 24	Re: A Famous Security Bug	108	Kaz Kylheku
20 Mar 24	Re: A Famous Security Bug	2	Keith Thompson
20 Mar 24	Re: A Famous Security Bug	1	Keith Thompson
21 Mar 24	Re: A Famous Security Bug	35	David Brown
21 Mar 24	Re: A Famous Security Bug	34	Kaz Kylheku
21 Mar 24	Re: A Famous Security Bug	4	Chris M. Thomasson
21 Mar 24	Re: A Famous Security Bug	3	Chris M. Thomasson
22 Mar 24	Re: A Famous Security Bug	2	Chris M. Thomasson
22 Mar 24	Re: A Famous Security Bug	1	Chris M. Thomasson
21 Mar 24	Re: A Famous Security Bug	28	Keith Thompson
22 Mar 24	Re: A Famous Security Bug	24	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	19	Keith Thompson
22 Mar 24	Re: A Famous Security Bug	18	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	2	James Kuyper
22 Mar 24	Re: A Famous Security Bug	1	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	1	David Brown
22 Mar 24	Re: A Famous Security Bug	14	Keith Thompson
22 Mar 24	Re: A Famous Security Bug	13	Kaz Kylheku
23 Mar 24	Re: A Famous Security Bug	12	David Brown
23 Mar 24	Re: A Famous Security Bug	11	Kaz Kylheku
23 Mar 24	Re: A Famous Security Bug	2	David Brown
24 Mar 24	Re: A Famous Security Bug	1	Kaz Kylheku
23 Mar 24	Re: A Famous Security Bug	8	James Kuyper
24 Mar 24	Re: A Famous Security Bug	7	Kaz Kylheku
24 Mar 24	Re: A Famous Security Bug	6	David Brown
24 Mar 24	Re: A Famous Security Bug	5	Kaz Kylheku
24 Mar 24	Re: A Famous Security Bug	3	David Brown
27 Mar 24	Re: A Famous Security Bug	2	Kaz Kylheku
28 Mar 24	Re: A Famous Security Bug	1	David Brown
24 Mar 24	Re: A Famous Security Bug	1	Chris M. Thomasson
22 Mar 24	Re: A Famous Security Bug	1	James Kuyper
22 Mar 24	Re: A Famous Security Bug	3	David Brown
22 Mar 24	Re: A Famous Security Bug	2	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	1	David Brown
22 Mar 24	Re: A Famous Security Bug	3	James Kuyper
22 Mar 24	Re: A Famous Security Bug	2	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	1	James Kuyper
22 Mar 24	Re: A Famous Security Bug	1	David Brown
21 Mar 24	Re: A Famous Security Bug	70	Anton Shepelev
21 Mar 24	Re: A Famous Security Bug	1	Keith Thompson
21 Mar 24	Re: A Famous Security Bug	15	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	13	David Brown
22 Mar 24	Re: A Famous Security Bug	12	Kaz Kylheku
22 Mar 24	Re: A Famous Security Bug	1	James Kuyper
22 Mar 24	Re: A Famous Security Bug	10	David Brown
23 Mar 24	Re: A Famous Security Bug	9	Richard Kettlewell
23 Mar 24	Re: A Famous Security Bug	1	Kaz Kylheku
23 Mar 24	Re: A Famous Security Bug	2	David Brown
23 Mar 24	Re: A Famous Security Bug	1	Kaz Kylheku
24 Mar 24	Re: A Famous Security Bug	5	Tim Rentsch
24 Mar 24	Re: A Famous Security Bug	4	Malcolm McLean
17 Apr 24	Re: A Famous Security Bug	3	Tim Rentsch
18 Apr 24	Re: A Famous Security Bug	1	David Brown
18 Apr 24	Re: A Famous Security Bug	1	Keith Thompson
28 Mar 24	Re: A Famous Security Bug	1	Anton Shepelev
22 Mar 24	Re: A Famous Security Bug	1	Tim Rentsch
22 Mar 24	Re: A Famous Security Bug	52	James Kuyper
22 Mar 24	Re: A Famous Security Bug	51	bart
23 Mar 24	Re: A Famous Security Bug	5	Keith Thompson
23 Mar 24	Re: A Famous Security Bug	4	Kaz Kylheku
23 Mar 24	Re: A Famous Security Bug	3	David Brown
23 Mar 24	Re: A Famous Security Bug	2	bart
24 Mar 24	Re: A Famous Security Bug	1	David Brown
23 Mar 24	Re: A Famous Security Bug	45	James Kuyper
23 Mar 24	Re: A Famous Security Bug	44	bart
23 Mar 24	Re: A Famous Security Bug	37	David Brown
23 Mar 24	Re: A Famous Security Bug	36	bart
24 Mar 24	Re: A Famous Security Bug	29	David Brown
24 Mar 24	Re: A Famous Security Bug	28	bart
24 Mar 24	Re: A Famous Security Bug	12	Keith Thompson
25 Mar 24	Re: A Famous Security Bug	1	David Brown
25 Mar 24	Re: A Famous Security Bug	3	Michael S
25 Mar 24	Re: A Famous Security Bug	1	David Brown
25 Mar 24	Re: A Famous Security Bug	1	Keith Thompson
25 Mar 24	Re: A Famous Security Bug	7	bart
25 Mar 24	Re: A Famous Security Bug	6	Michael S
25 Mar 24	Re: A Famous Security Bug	4	bart
25 Mar 24	Re: A Famous Security Bug	3	David Brown
25 Mar 24	Re: A Famous Security Bug	2	Malcolm McLean
25 Mar 24	Re: A Famous Security Bug	1	Michael S
25 Mar 24	Re: A Famous Security Bug	1	David Brown
25 Mar 24	Re: A Famous Security Bug	15	David Brown
25 Mar 24	Re: A Famous Security Bug	14	Michael S
25 Mar 24	Re: A Famous Security Bug	13	David Brown
25 Mar 24	Re: A Famous Security Bug	3	Michael S
25 Mar 24	Re: A Famous Security Bug	1	David Brown
25 Mar 24	Re: A Famous Security Bug	1	bart
25 Mar 24	Re: A Famous Security Bug	9	bart
25 Mar 24	Re: A Famous Security Bug	7	Michael S
25 Mar 24	Re: A Famous Security Bug	6	bart
25 Mar 24	Re: A Famous Security Bug	1	David Brown
25 Mar 24	Re: A Famous Security Bug	4	Michael S
25 Mar 24	Re: A Famous Security Bug	3	bart
26 Mar 24	Re: A Famous Security Bug	2	Michael S
26 Mar 24	Re: A Famous Security Bug	1	bart
25 Mar 24	Re: A Famous Security Bug	1	David Brown
24 Mar 24	Re: A Famous Security Bug	6	Michael S
24 Mar 24	Re: A Famous Security Bug	5	bart
25 Mar 24	Re: A Famous Security Bug	2	Michael S
25 Mar 24	Re: A Famous Security Bug	1	Michael S
25 Mar 24	Re: A Famous Security Bug	1	David Brown
28 Mar 24	Re: A Famous Security Bug	1	James Kuyper
23 Mar 24	Re: A Famous Security Bug	1	Tim Rentsch
24 Mar 24	Re: A Famous Security Bug	1	Michael S
24 Mar 24	Re: A Famous Security Bug	3	Michael S
28 Mar 24	Re: A Famous Security Bug	1	James Kuyper
20 Mar 24	Re: A Famous Security Bug	1	Joerg Mertens
20 Mar 24	Re: A Famous Security Bug	5	Chris M. Thomasson
27 Mar 24	Re: A Famous Security Bug	3	Stefan Ram