Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAJOtW+6vveBkwzYhzLonwUppsZvSy6c5K35ys8dxCA6U0i0sAA@mail.gmail.com>
Date: Mon, 23 Dec 2024 22:33:31 +0300
From: Yuri Gribov <tetra2005@...il.com>
To: Florian Weimer <fweimer@...hat.com>
Cc: oss-security@...ts.openwall.com
Subject: Re: Re: Out-of-bounds read & write in the glibc's qsort()

On Mon, Dec 23, 2024 at 8:47 PM Florian Weimer <fweimer@...hat.com> wrote:
> It's a bit odd that you disable reflexivity checks by default, but quite
> a few of the issues reported are in this category.

I think back then I wanted to make default settings free of false
positives. Often sorted arrays may only contain unique elements and in
such cases reflexivity checks are useless.

-Y

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.