Free Software Foundation!

Join now

Help us raise $300,000 by January 30th

Libsafe

This entry published by the Free Software Foundation.



libsafe

http://www.research.avayalabs.com/gcm/usa/en-us/initiatives/all/nsr.htm&Filter=ProjectTitle:Libsafe&Wrapper=LabsProjectDetails&View=LabsProjectDetails
The exploitation of buffer overflow and format string vulnerabilities in process stacks are a significant portion of security attacks. 'libsafe' is based on a middleware software layer that intercepts all function calls made to library functions known to be vulnerable. A substitute version of the corresponding function implements the original function in a way that ensures that any buffer overflows are contained within the current stack frame, which prevents attackers from overwriting the return address and hijacking the control flow of a running program. The true benefit of using libsafe is protection against future attacks on programs not yet known to be vulnerable. The performance overhead of libsafe is negligible, it does not require changes to the OS, it works with existing binary programs, and it does not need access to the source code of defective programs, or recompilation or off-line processing of binaries.

Related Projects


Download

Download External-link-icon.png version 2.0 (stable)
released on 21 March 2001

Categories


Licensing

License Verified by Verified on Notes
LGPL Janet Casey 2452101.511 July 2001


Leaders and contributors

Contact(s)Role
Maintainer

Resources and communication

Audience Resource type URI
Developer,Support E-mail mailto:libsafe@research.avayalabs.com


Software prerequisites

Click here if you'd like to report a problem or make a suggestion that could


This entry (in part or in whole) was last reviewed on 16 July 2001.



Problem with this listing?









Retrieved from "http://directory.fsf.org/wiki/Libsafe"

Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.

The copyright and license notices on this page only apply to the text on this page. Any software described in this text has its own copyright notice and license, which can usually be found in the distribution itself.

This page was last modified on 12 April 2011, at 13:07.

The FSF is a charity with a worldwide mission to advance software freedom — learn about our history and work.

Copyright © 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011 Free Software Foundation, Inc.

Licensed under the GNU Free Documentation License, version 1.3 or later.

The FSF also has sister organizations in France, Latin America, Europe and India.

Powered by MediaWiki and Semantic MediaWiki

Toolbox