
Broadening compiler checks for buffer overflows in _FORTIFY_SOURCE
Buffer overruns are by far the most common vulnerability in C or C++ programs, and a number of techniques have come up over the years to detect overruns early and abort execution. The _FORTIFY_SOURCE
macro, provided by the GNU C Library, helps mitigate a number of these overruns and is widely deployed in Red Hat Enterprise Linux. This article on the Red Hat Security blog is a good introduction to _FORTIFY_SOURCE
.
Continue reading Broadening compiler checks for buffer overflows in _FORTIFY_SOURCE