Bug#482698: CVE-2008-1685: removes possible protection mechanism against overflows

To: Steffen Joeris <steffen.joeris@skolelinux.de>, 482698@bugs.debian.org
Subject: Bug#482698: CVE-2008-1685: removes possible protection mechanism against overflows
From: Bastian Blank <waldi@debian.org>
Date: Sat, 24 May 2008 17:07:00 +0200
Message-id: <[🔎] 20080524150700.GA32294@wavehammer.waldi.eu.org>
Reply-to: Bastian Blank <waldi@debian.org>, 482698@bugs.debian.org
In-reply-to: <[🔎] 20080524141722.8680.38829.reportbug@hannah>
References: <[🔎] 20080524141722.8680.38829.reportbug@hannah>

On Sun, May 25, 2008 at 12:17:22AM +1000, Steffen Joeris wrote:
> gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not
> used, considers the sum of a pointer and an int to be greater than or
> equal to the pointer, which might remove length testing code that was
> intended as a protection mechanism against integer overflow and buffer
> overflow attacks.

No bug in gcc. Pointers have no defined overflow behaviour in C. See
#472867 for another example.

Bastian

-- 
Yes, it is written.  Good shall always destroy evil.
		-- Sirah the Yang, "The Omega Glory", stardate unknown

Reply to:

References:
- Bug#482698: CVE-2008-1685: removes possible protection mechanism against overflows
  - From: Steffen Joeris <steffen.joeris@skolelinux.de>

Prev by Date: Bug#482691: gcc-snapshot_20080523-1(unstable/sparc/lebrun): Fails to apply patches
Next by Date: Processing of gnat-4.3_4.3.0-6_amd64.changes
Previous by thread: Bug#482698: CVE-2008-1685: removes possible protection mechanism against overflows
Next by thread: Bug#482698: CVE-2008-1685: removes possible protection mechanism against overflows
Index(es):
- Date
- Thread