Ancestors

Toot

Written by Carlos O'Donell on 2024-11-27 at 22:24

@dalias Ah, backtrace from a signal handler, old friend how I've missed you... https://github.com/rust-lang/rust/pull/133170#issuecomment-2504897012

=> More informations about this toot | More toots from codonell@fosstodon.org

Descendants

Written by k4lizen on 2024-11-27 at 23:26

@codonell @dalias

because the worst thing that can happen is for there to be an attacker exploitable defect in this code.

huh thats interesting, has there been a case of this happening?

=> More informations about this toot | More toots from k4lizen@infosec.exchange

Written by Cassandrich on 2024-11-28 at 02:57

@k4lizen @codonell Yes. IIRC there was a fairly high profile one. In general, if attacker already has ability to clobber memory, they may have maliciously modified the GOT, TLS, etc. in ways that make any further calls unsafe. You want the kernel to just terminate the process, not run further code in compromised state.

=> More informations about this toot | More toots from dalias@hachyderm.io

Written by k4lizen on 2024-11-28 at 20:19

@dalias @codonell

makes sense!

=> More informations about this toot | More toots from k4lizen@infosec.exchange

Proxy Information

Original URL: gemini://mastogem.picasoft.net/thread/113557258059054283
Status Code: Success (20)
Meta: text/gemini
Capsule Response Time: 255.743484 milliseconds
Gemini-to-HTML Time: 0.782861 milliseconds

This content has been proxied by September (3851b).