diff options
author | Florian Weimer <fweimer@redhat.com> | 2017-08-30 16:39:41 +0200 |
---|---|---|
committer | Florian Weimer <fweimer@redhat.com> | 2017-08-30 16:39:41 +0200 |
commit | ec2c1fcefb200c6cb7e09553f3c6af8815013d83 (patch) | |
tree | 6da867b8b565f3d200688016fef68d8de42f9ae1 /NEWS | |
parent | 9ce673b69e82578044958f66d93dcaddb23f6e95 (diff) | |
download | glibc-ec2c1fcefb200c6cb7e09553f3c6af8815013d83.tar.gz glibc-ec2c1fcefb200c6cb7e09553f3c6af8815013d83.tar.xz glibc-ec2c1fcefb200c6cb7e09553f3c6af8815013d83.zip |
malloc: Abort on heap corruption, without a backtrace [BZ #21754]
The stack trace printing caused deadlocks and has been itself been targeted by code execution exploits.
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/NEWS b/NEWS index 8fe0879bc4..625bcc60b6 100644 --- a/NEWS +++ b/NEWS @@ -12,6 +12,14 @@ Major new features: * Optimized x86-64 asin, atan2, exp, expf, log, pow, atan, sin and tan with FMA, contributed by Arjan van de Ven and H.J. Lu from Intel. +* In order to support faster and safer process termination the malloc API + family of functions will no longer print a failure address and stack + backtrace after detecting heap corruption. The goal is to minimize the + amount of work done after corruption is detected and to avoid potential + security issues in continued process execution. Reducing shutdown time + leads to lower overall process restart latency, so there is benefit both + from a security and performance perspective. + Deprecated and removed features, and other changes affecting compatibility: * On GNU/Linux, the obsolete Linux constant PTRACE_SEIZE_DEVEL is no longer |