[Gc] security issue with libgc ?

Christophe Meessen meessen at cppm.in2p3.fr
Fri Mar 16 07:30:28 PST 2007


Hello,

I plan to use libgc in a network application where remote user could 
send in data.
 From the documentation I understand that libgc identifies pointers by 
himself in the block data.
How secure is this against specialy crafted byte blocks received from 
the network ?
Could it be possible to provide data that tricks libgc into considering 
some of it as pointers and interfering with its normal activity  like 
jeopardizing memory management, crashing the program or worse causing it 
to execute injected code ?





More information about the Gc mailing list