Android N Media Stack Sandboxing Could Protect Against Future 'Stagefright' Vulnerabilities

Status
Not open for further replies.

hellwig

Distinguished
May 29, 2008
1,743
0
19,860
26
I wonder if people understand the impact of these sorts of changes. Look at the code example, it took one assembly instruction and turned it into multiple instructions include three comparisons and a conditional branch.

Yes it's safer, but it's a LOT more complex. Imagine if it injected this code for EVERY arithmetic operation. They even admit they left some overflows alone for "performance", does that mean they're now performing assembly-level reviews on their applications?
 

wifiburger

Respectable
Feb 21, 2016
413
0
1,810
9
I remember codding in my C++ class and our group has to protect every function from overflow attacks, It was stupid, annoying and time consumming
 
Status
Not open for further replies.

ASK THE COMMUNITY