From: "Martin Dowie" <martin.dowie@baesystems.com>
Subject: Re: Buffer overflow Article - CACM
Date: Thu, 17 Nov 2005 11:13:48 -0000
Date: 2005-11-17T11:15:13+00:00 [thread overview]
Message-ID: <437c63f6$1_1@glkas0286.greenlnk.net> (raw)
In-Reply-To: K5Gef.15365$D13.1548@newssvr11.news.prodigy.com
adaworks@sbcglobal.net wrote:
> You are correct. Consider,
>
> procedure Array_Loop is
> type Index is range 1..10;
> X : array (Index) of Integer;
> begin
> for I in Index loop
> null;
> end loop;
> end Array_Loop;
>
> No overflow. No indexing off the end of the array. Easy to
> compose. Easy to read. As for X'Range, I have never seen
> a case where it ran off the end of an array. In any case, once my
> program, as shown above, is compiled and linked, it would
> be diffcult for an attacker to exploit it.
The problem with the above example is that there are compilers that will
_not_ remove superfluous checks, e.g. if the "null;" was instead "Y := X
(I);". Change "for I in Index loop" to "for I in X'Range loop" and the
checks go...
next prev parent reply other threads:[~2005-11-17 11:13 UTC|newest]
Thread overview: 58+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-11-13 5:14 Buffer overflow Article - CACM adaworks
2005-11-13 7:35 ` tmoran
2005-11-13 8:49 ` Martin Krischik
2005-11-13 11:55 ` Georg Bauhaus
2005-11-13 14:58 ` Florian Weimer
2005-11-14 13:44 ` Marc A. Criley
2005-11-14 19:13 ` Martin Krischik
2005-11-13 15:02 ` Florian Weimer
2005-11-13 15:44 ` Stephen Leake
2005-11-14 14:40 ` adaworks
2005-11-13 23:57 ` Jeffrey R. Carter
2005-11-14 6:51 ` Martin Dowie
2005-11-14 17:55 ` Jeffrey R. Carter
2005-11-15 9:14 ` Martin Dowie
2005-11-14 7:09 ` Pascal Obry
2005-11-14 8:35 ` Dmitry A. Kazakov
2005-11-14 20:57 ` Simon Wright
2005-11-15 8:49 ` Dmitry A. Kazakov
2005-11-15 14:03 ` Georg Bauhaus
2005-11-15 15:14 ` Dmitry A. Kazakov
2005-11-15 22:32 ` Georg Bauhaus
2005-11-16 1:21 ` Robert A Duff
2005-11-16 9:26 ` Dmitry A. Kazakov
2005-11-16 13:02 ` adaworks
2005-11-17 11:13 ` Martin Dowie [this message]
2005-11-14 17:58 ` Jeffrey R. Carter
2005-11-14 18:44 ` Larry Kilgallen
2005-11-25 5:56 ` Christopher Browne
2005-11-26 1:31 ` Jeffrey R. Carter
2005-11-27 21:36 ` adaworks
2005-11-28 12:12 ` Simon Clubley
2005-12-01 2:35 ` robin
2005-12-01 7:05 ` adaworks
2005-12-03 13:42 ` robin
2005-12-03 18:18 ` adaworks
2005-12-12 1:23 ` robin
2005-12-31 7:39 ` robin
2005-12-31 17:03 ` Georg Bauhaus
2006-01-01 12:12 ` Martin Krischik
2006-01-01 23:12 ` robin
2006-01-02 3:37 ` jimmaureenrogers
2006-01-12 22:10 ` robin
2006-01-03 9:52 ` Georg Bauhaus
2006-01-12 22:10 ` robin
2006-01-12 22:36 ` Georg Bauhaus
2006-01-13 19:53 ` Keith Thompson
2006-01-13 20:22 ` Dan Nagle
2006-01-14 17:50 ` Björn Persson
[not found] ` <12ces1lv5dvm6pifdapj11o1hrtlm6ec7q@4ax.com>
2006-01-13 23:28 ` robin
2005-11-30 15:27 ` robin
2005-11-14 10:17 ` Peter Amey
2005-11-29 8:16 ` Harald Korneliussen
2005-11-29 10:48 ` Peter Amey
2005-11-30 21:21 ` Brian May
2005-12-01 5:36 ` Jeffrey R. Carter
2005-12-01 9:01 ` Harald Korneliussen
2005-12-01 11:21 ` Martin Dowie
2005-12-01 17:58 ` Jeffrey R. Carter
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox