“Clang will now more aggressively use undefined behavior on pointer addition overflow for optimization purposes.” https://github.com/llvm/llvm-project/commit/c2979c58d49b
A whole lot of non-exploitable bugs may become exploitable pretty soon.
=> More informations about this toot | More toots from comex@mas.to
@comex but for real, how many applications would suffer an unacceptable performance degradation if the pointer overflow sanitizer was left turned on?
=> More informations about this toot | More toots from regehr@mastodon.social
text/geminiThis content has been proxied by September (ba2dc).