On Sun, Jul 19, 2015 at 11:07:13PM +0200, Denys Vlasenko wrote: > I would rather keep it. > > What is the "most horrible" thing which can happen here?
Arbitrary code execution due to stack overflow. Does this really need a PoC? alloca is _always_ unsafe unless the argument is bounded and tiny. Rich _______________________________________________ busybox mailing list [email protected] http://lists.busybox.net/mailman/listinfo/busybox
