Overeager Compilers Can Open Security Holes In Your Code 199
jfruh writes: "Creators of compilers are in an arms race to improve performance. But according to a presentation at this week's annual USENIX conference, those performance boosts can undermine your code's security. For instance, a compiler might find a subroutine that checks a huge bound of memory beyond what's allocated to the program, decide it's an error, and eliminate it from the compiled machine code — even though it's a necessary defense against buffer overflow attacks."
Re:old news from decades ago (Score:3, Interesting)
Re:old news from decades ago (Score:4, Interesting)