[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: VLA and alloca
From: |
Bruno Haible |
Subject: |
Re: VLA and alloca |
Date: |
Sun, 20 Jan 2019 16:36:29 +0100 |
User-agent: |
KMail/5.1.3 (Linux/4.4.0-141-generic; KDE/5.18.0; x86_64; ; ) |
Pádraig Brady wrote:
> I've not analyzed the security concerns in detail, but in general
> large allocations on the stack are bad for security
Indeed. Just reading this CVE [1] from a week ago, makes me want to
disable all large allocations on the stack.
Bruno
[1] https://www.openwall.com/lists/oss-security/2019/01/09/3