Join GitHub today
GitHub is home to over 20 million developers working together to host and review code, manage projects, and build software together.
add a FIFO malloc quarantine in addition to the random one #167
Comments
thestinger
added
the
Type: enhancement
label
Feb 6, 2016
thestinger
changed the title from
add a deterministic malloc quarantine on top of the random one
to
add a deterministic malloc quarantine in additon to the random one
Feb 6, 2016
thestinger
changed the title from
add a deterministic malloc quarantine in additon to the random one
to
add a FIFO malloc quarantine in additon to the random one
Feb 6, 2016
thestinger
added
the
Component: hardened malloc
label
Feb 6, 2016
thestinger
changed the title from
add a FIFO malloc quarantine in additon to the random one
to
add a FIFO malloc quarantine in addition to the random one
Feb 10, 2016
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
Show comment Hide comment|
This is now implemented. |
thestinger
closed this
Feb 10, 2016
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
thestinger commentedFeb 6, 2016
The randomized quarantine is a good way of introducing randomness into the heap layout, but it only guarantees that allocations are delayed for a single
freecycle. A FIFO quarantine can provide a more meaningful guarantee, potentially mitigating use-after-free vulnerabilities (especially in conjunction with the junk validation code).