摘要
以堆栈溢出为代表的缓冲区溢出已经成为最为普遍的安全漏洞之一。自从1988年缓冲区漏洞被发现以来,虽然经过几十年的努力,科研人员提出了各种防护方法,但是在操作系统或者软件当中总有新的溢出漏洞或者其变种被发现。为了尽可能避免堆栈溢出漏洞被攻击者利用,一直以来,众多的编译器工作者在GCC编译器中尝试了多种方法来保护内存中的堆栈区域。
Buffer overflow represented by stack overflow has become one of the most common security vulnerabilities.Since the buffer vulnerabilities were discovered,although after decades of efforts,researchers proposed various protection methods,but there are new overflow or the variants were found in the operating system or software.In order to avoid stack overflow vulnerabilities being exploited,so far,many compiler workers have tried many methods to protect the stack and heap area in the GCC compiler.
作者
曹耀彬
王亚刚
CAO Yao-bin;WANG Ya-gang(School of Computer Science,Xi’an University of Posts and Telecommunications,Xi’an 710121,China)
出处
《信息技术》
2017年第7期23-25,共3页
Information Technology
基金
国家自然科学基金资助项目(61136002)
陕西省教育厅科研计划项目(14JK1674)
