Security of memory allocators for C and CPP

To view the full lecture on video, click "Here".

• What The News
• General information
  • When & Where
  • Tickets
  • Travel
  • FAQ
  • Thanks to ...
  • Contact
  • Forum (old site)
• Camping
  • Map of WTH
  • Weather
  • Hotels
  • Facilities
  • Campsite locations
• Participate
  • Volunteers
  • Villages
  • Projects
• Conference program
  • Schedule Day 1
  • Schedule Day 2
  • Schedule Day 3
  • Schedule Day 4
  • Events
  • Speakers
  • iCal
• Other
  • Photos
  • Press Reviews

Abstract

I will discuss a variety of memory allocators that are available for C and C++ and how they can be exploited.
Afterwards I will describe our modification to one of these memory allocators that makes it more resilient to attacks.

The talk will cover security issues with a range of memory allocators:

• dlmalloc (linux malloc)
• csri/quickfit
• phkmalloc (bsd malloc)
• Boehm's garbage collector
• Windows malloc

Our talk will describe how an attacker would attack the memory management of such memory allocators. The talk will also detail our own modification to dlmalloc to make it more secure against code injection attacks.

Speakers

• Yves Younan

Schedule

Informations