Recent informative ML thread: List of security features in musl. http://www.openwall.com/lists/musl/2016/02/11/4 …
@CopperheadSec For hardening that induces impl complexity I first want to see evidence that there are realworld vulns it would avert.
-
-
@CopperheadSec Have there actually been a significant number of jmp_buf based exploits? I don't know. Does anyone? -
@RichFelker It doesn't prevent vulnerabilities. It prevents control flow hijacking via those function pointers as part of exploitation. -
@CopperheadSec Yes. But what I'm asking is whether vulnerable jmp_buf's are sufficiently common to be worthwhile to harden.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.