Calling a *checked* stack overflow a "buffer overflow" is totally disingenuous.https://twitter.com/ErrataRob/status/1193242295207899141 …
-
-
Replying to @pcwalton
Paul Crowley Retweeted Robᵉʳᵗ Graham 😷
He seems to think stack overflows are not always checked.https://twitter.com/ErrataRob/status/1193243682444578816 …
Paul Crowley added,
1 reply 0 retweets 4 likes -
Replying to @ciphergoth
There's always a guard page and at least on most platforms there is a stack probe as well for large activation records. Alloca is forbidden so that avenue of exploitation is closed off. So this is unexploitable on x86 and is probably unexploitable elsewhere too.
2 replies 0 retweets 14 likes
And in the very unlikely event that this were exploitable on ARM or whatever (remember, you would have to jump a guard page without alloca) we could just implement stack probes there too.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.