Hi Very good to know.
// Ola On 25 November 2016 at 14:53, Raphael Hertzog <hert...@debian.org> wrote: > Hi, > > On Fri, 25 Nov 2016, Ola Lundqvist wrote: > > Thank you for the information that it is glibc that "protect". Do we know > > that glibc in wheezy do this or is this a more recent thing? > > AFAIK glibc does not "protect", it adds canaries to detect when it happens, > but it cannot avoid them. And it detects them possibly way later when > memory is freed (unless the overrun is done by glibc functions I guess). > > https://security.stackexchange.com/questions/64182/does-glibc-use-canary- > checking-to-prevent-heap-buffer-overflow > > But it's hard to find any official documentation about what glibc really > does. > > Cheers, > -- > Raphaël Hertzog ◈ Debian Developer > > Support Debian LTS: http://www.freexian.com/services/debian-lts.html > Learn to master Debian: http://debian-handbook.info/get/ > -- --- Inguza Technology AB --- MSc in Information Technology ---- / o...@inguza.com Folkebogatan 26 \ | o...@debian.org 654 68 KARLSTAD | | http://inguza.com/ Mobile: +46 (0)70-332 1551 | \ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 / ---------------------------------------------------------------
