wasting my time reading bad mailing lists
George Guiniski (aka the guy who disclosed those OpenBSD kernel bugs, annoying blackhats everywhere) pointed out a gcc bug:
$ gcc --version
2.95.3
$ cat gcc-crash.c
int main(void)
{
printf("%c","msux"[0xcafebabe]);
}
$ gcc gcc-crash.c
gcc: Internal compiler error: program cc1 got fatal signal 11
After wallowing through the fud someone finally posts a decent (though sarcastic) explanation:
http://lists.netsys.com/pipermail/full-disclosure/2004-January/015427.html
http://lists.netsys.com/pipermail/full-disclosure/2004-January/015449.html
***
Oh and vuln-dev is getting(?) comically ridiculous. Like, I'm not longer certain if people are making things up completely tongue-in-cheek. See, for instance:
Thwarting /bin/bash, an anti-overflow idea. While someone was very quick to point out that most exploit shellcode executes /bin/sh, not bash, the discussion on this inane idea nevertheless continued.
The worst LKM idea ever? I really thought this was someone's joke, in reaction to the thread linked above.
Considering buffer 'underflows' Huh? Am I missing something here? Actually, I think he may be talking about something like format string bugs. I dunno. Maybe something is lost in the translation...
$ gcc --version
2.95.3
$ cat gcc-crash.c
int main(void)
{
printf("%c","msux"[0xcafebabe]);
}
$ gcc gcc-crash.c
gcc: Internal compiler error: program cc1 got fatal signal 11
After wallowing through the fud someone finally posts a decent (though sarcastic) explanation:
http://lists.netsys.com/pipermail/full-disclosure/2004-January/015427.html
http://lists.netsys.com/pipermail/full-disclosure/2004-January/015449.html
***
Oh and vuln-dev is getting(?) comically ridiculous. Like, I'm not longer certain if people are making things up completely tongue-in-cheek. See, for instance:
Thwarting /bin/bash, an anti-overflow idea. While someone was very quick to point out that most exploit shellcode executes /bin/sh, not bash, the discussion on this inane idea nevertheless continued.
The worst LKM idea ever? I really thought this was someone's joke, in reaction to the thread linked above.
Considering buffer 'underflows' Huh? Am I missing something here? Actually, I think he may be talking about something like format string bugs. I dunno. Maybe something is lost in the translation...