all InfoSec news
SafeLLVM: LLVM Without The ROP Gadgets!. (arXiv:2305.06092v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Memory safety is a cornerstone of secure and robust software systems, as it
prevents a wide range of vulnerabilities and exploitation techniques. Among
these, we focus on Return-Oriented Programming (ROP). ROP works as such: the
attacker takes control of the program's execution flow via a memory corruption
attack, then takes advantages of code snippets already in the program's memory,
dubbed "gadgets," to achieve the attacker's desired effect.
In this paper, we introduce SafeLLVM, an approach to minimize the number of …
attack control cornerstone corruption exploitation flow focus gadgets llvm memory memory corruption memory safety program programming return rop rop gadgets safety software systems techniques vulnerabilities