Heartbleed, a few naive questions
Dag-Erling Smørgrav
des at des.no
Thu Apr 10 10:59:09 UTC 2014
"Ronald F. Guilmette" <rfg at tristatelogic.com> writes:
> Xin Li <delphij at delphij.net> writes:
> > For this bug, doing calloc() makes no difference.
> I would very much like to know how you reached that conclusion.
It's very simple. The explpoit relies on reading past the end of the
allocated buffer. Clearing the allocated buffer would not have made any
difference. The problem is the size of the buffer, not its contents.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list