vuln: auditing source code

October 1, 2016 less than 1 minute read

most common vulnerabilities:

memory corruption: same data copied into memmory parts not assigned for it. often comes with these functions:
- strcat, strcpy, sprintf, gets,...
data type bugs: types interchanged
- e.g., library function expects short and one overhands int
metachar injection: when getting input and executed
- use metachar of the specified language and even underlying lib
- sql injection: try to trick the input field to give back data that wasnt planned
tips:
- check size calculations
- dynamic memory alloc (malloc,..)
- pointer arithmetic

My first patch to `libc++`

July 27, 2024 3 minute read

I listened to an older cppcast episode and it mentioned that the C++17 mathematical special functions are not yet included in llvm’s standard library libc++....

C++ dual build: Including headers or importing modules

July 14, 2024 12 minute read

This blog post will discuss enabling a dual build configuration for C++20 modules: Either use old-school header includes (x)or import modules instead.

Better git diff

July 4, 2024 less than 1 minute read

The output of git calls, e.g. git diff, can be improved. Instead of only showing changed lines it can highlight the parts of a line that actually changed. Se...

VSCode freezes on XFCE

June 2, 2024 less than 1 minute read

VSCode might freeze on a freshly installed Manjaro running XFCE whenever one opens a folder containing a git repository.

Paul

vuln: auditing source code

You May Also Enjoy

My first patch to `libc++`

C++ dual build: Including headers or importing modules

Better git diff

VSCode freezes on XFCE

Paul

You May Also Enjoy

My first patch to libc++

C++ dual build: Including headers or importing modules

Better git diff

VSCode freezes on XFCE

My first patch to `libc++`