[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Re: [Dailydave] [oss-security] Linux
From:       yersinia <yersinia.spiros () gmail ! com>
Date:       2009-07-22 16:30:39
Message-ID: b086760e0907220930j7da01917nc3556c63a4a67a2f () mail ! gmail ! com
[Download RAW message or body]


On Wed, Jul 22, 2009 at 5:04 PM, Todd Sabin<tsabin@optonline.net> wrote:
> spender@grsecurity.net (Brad Spengler) writes:
>
>> (Really there should have been a CVE for the lack of
>> -fno-delete-null-pointer-checks instead of pretending the only problem
>> was /dev/net/tun....
>
> Just as a side note, it seems like gcc is missing an option, to me.
> Okay, it can figure out that some NULL pointer checks seem to be
> useless, and either optimize them away or leave them in.  What about
> issuing a warning?
>
> Where's -Wuseless-null-pointer-check?
>

Coverity opinion on this specific issue

http://blog.coverity.com/posts/general/would-you-like-to-know-about-0day-defects-months-in-advance

Regards

>
> Todd
>
> --
> Todd Sabin                                          <tsabin@optonline.net>
>


[prev in list] [next in list] [prev in thread] [next in thread]