public inbox for gcc-bugs@sourceware.org
help / color / mirror / Atom feed
* [Bug c/56046] New: the buffer overflow can escape from the stack protection in 64-bit linux system
@ 2013-01-19 13:40 ws0520 at qq dot com
2013-01-19 13:54 ` [Bug c/56046] " ws0520 at qq dot com
2013-01-19 16:16 ` schwab@linux-m68k.org
0 siblings, 2 replies; 3+ messages in thread
From: ws0520 at qq dot com @ 2013-01-19 13:40 UTC (permalink / raw)
To: gcc-bugs
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=56046
Bug #: 56046
Summary: the buffer overflow can escape from the stack
protection in 64-bit linux system
Classification: Unclassified
Product: gcc
Version: 4.6.3
Status: UNCONFIRMED
Severity: normal
Priority: P3
Component: c
AssignedTo: unassigned@gcc.gnu.org
ReportedBy: ws0520@qq.com
Created attachment 29219
--> http://gcc.gnu.org/bugzilla/attachment.cgi?id=29219
the bug code
system version :64-bit Ubuntu 12.04 lts
gcc version: 4.6.3
options:gcc source.c -o source
When compile and run a program with an error which will cause buffer
overflow,the compiler can not dectect it.
The program below can compile and run correctly in my system(also works on my
friend system which is no ubuntu but with gcc version 4.5.0)
#include <stdio.h>
#include <string.h>
main()
{
const char *a="123456789abcdef";
char b[10];
int i=0;
while((b[i]=a[i])!='\0')
++i;
printf("%s,%d\n",b,strlen(b));
return 0;
}
I attempt to copy a string whose length is 15 to a array whose length is 10,and
it compiles and run correctly.The output is "123456789abcdef,15".
p.s. This will not succeed in 32-bit linux system.
^ permalink raw reply [flat|nested] 3+ messages in thread
* [Bug c/56046] the buffer overflow can escape from the stack protection in 64-bit linux system
2013-01-19 13:40 [Bug c/56046] New: the buffer overflow can escape from the stack protection in 64-bit linux system ws0520 at qq dot com
@ 2013-01-19 13:54 ` ws0520 at qq dot com
2013-01-19 16:16 ` schwab@linux-m68k.org
1 sibling, 0 replies; 3+ messages in thread
From: ws0520 at qq dot com @ 2013-01-19 13:54 UTC (permalink / raw)
To: gcc-bugs
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=56046
--- Comment #1 from CocooWang <ws0520 at qq dot com> 2013-01-19 13:54:22 UTC ---
My freinds tests my code in CentOS!
^ permalink raw reply [flat|nested] 3+ messages in thread
* [Bug c/56046] the buffer overflow can escape from the stack protection in 64-bit linux system
2013-01-19 13:40 [Bug c/56046] New: the buffer overflow can escape from the stack protection in 64-bit linux system ws0520 at qq dot com
2013-01-19 13:54 ` [Bug c/56046] " ws0520 at qq dot com
@ 2013-01-19 16:16 ` schwab@linux-m68k.org
1 sibling, 0 replies; 3+ messages in thread
From: schwab@linux-m68k.org @ 2013-01-19 16:16 UTC (permalink / raw)
To: gcc-bugs
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=56046
--- Comment #2 from Andreas Schwab <schwab@linux-m68k.org> 2013-01-19 16:16:08 UTC ---
The stack protection code cannot guarantee to detect every error.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2013-01-19 16:16 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2013-01-19 13:40 [Bug c/56046] New: the buffer overflow can escape from the stack protection in 64-bit linux system ws0520 at qq dot com
2013-01-19 13:54 ` [Bug c/56046] " ws0520 at qq dot com
2013-01-19 16:16 ` schwab@linux-m68k.org
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).