CN107895115B - 防止栈溢出的方法、装置及终端设备 - Google Patents
防止栈溢出的方法、装置及终端设备 Download PDFInfo
- Publication number
- CN107895115B CN107895115B CN201711262338.4A CN201711262338A CN107895115B CN 107895115 B CN107895115 B CN 107895115B CN 201711262338 A CN201711262338 A CN 201711262338A CN 107895115 B CN107895115 B CN 107895115B
- Authority
- CN
- China
- Prior art keywords
- variables
- variable
- compiled program
- compiler
- type
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 48
- 238000012937 correction Methods 0.000 claims description 22
- 230000004048 modification Effects 0.000 claims description 20
- 238000012986 modification Methods 0.000 claims description 20
- 230000015654 memory Effects 0.000 claims description 14
- 238000004590 computer program Methods 0.000 claims description 9
- 230000007547 defect Effects 0.000 abstract description 10
- 230000000246 remedial effect Effects 0.000 abstract description 5
- 230000006870 function Effects 0.000 description 18
- 230000008569 process Effects 0.000 description 15
- 238000004891 communication Methods 0.000 description 8
- 238000010586 diagram Methods 0.000 description 7
- 230000007123 defense Effects 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 230000006399 behavior Effects 0.000 description 2
- 230000001413 cellular effect Effects 0.000 description 2
- 238000005034 decoration Methods 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 238000009825 accumulation Methods 0.000 description 1
- 238000004883 computer application Methods 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000005065 mining Methods 0.000 description 1
- 238000005457 optimization Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/74—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Mathematical Physics (AREA)
- Debugging And Monitoring (AREA)
Abstract
Description
Claims (5)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711262338.4A CN107895115B (zh) | 2017-12-04 | 2017-12-04 | 防止栈溢出的方法、装置及终端设备 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711262338.4A CN107895115B (zh) | 2017-12-04 | 2017-12-04 | 防止栈溢出的方法、装置及终端设备 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107895115A CN107895115A (zh) | 2018-04-10 |
CN107895115B true CN107895115B (zh) | 2021-01-29 |
Family
ID=61806912
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711262338.4A Active CN107895115B (zh) | 2017-12-04 | 2017-12-04 | 防止栈溢出的方法、装置及终端设备 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107895115B (zh) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112286684B (zh) * | 2020-10-29 | 2022-08-02 | 苏州浪潮智能科技有限公司 | 一种内存使用量控制方法、装置、设备及介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101017458A (zh) * | 2007-03-02 | 2007-08-15 | 北京邮电大学 | 基于源代码静态分析的软件安全代码分析器及其检测方法 |
CN104503793A (zh) * | 2014-12-24 | 2015-04-08 | 风腾科技(北京)有限公司 | 代码练习软件中代码的运行和图形化的解析方法 |
CN104714885A (zh) * | 2015-02-13 | 2015-06-17 | 小米科技有限责任公司 | 栈溢出位置的检测方法及装置 |
CN105809039A (zh) * | 2016-03-04 | 2016-07-27 | 南京大学 | 缓冲区溢出漏洞自动修复方法 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101241532A (zh) * | 2008-02-15 | 2008-08-13 | 北京邮电大学 | 面向源代码的基于不等式组求解的缓冲区溢出检测方法 |
FR2977694A1 (fr) * | 2011-07-08 | 2013-01-11 | St Microelectronics Rousset | Microprocesseur protege contre un debordement de pile |
US9329844B2 (en) * | 2014-05-30 | 2016-05-03 | Apple Inc. | Programming system and language for application development |
CN104657190B (zh) * | 2015-02-14 | 2018-05-11 | 南威软件股份有限公司 | 一种基于c语言家族的增强开关语句功能的方法 |
-
2017
- 2017-12-04 CN CN201711262338.4A patent/CN107895115B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101017458A (zh) * | 2007-03-02 | 2007-08-15 | 北京邮电大学 | 基于源代码静态分析的软件安全代码分析器及其检测方法 |
CN104503793A (zh) * | 2014-12-24 | 2015-04-08 | 风腾科技(北京)有限公司 | 代码练习软件中代码的运行和图形化的解析方法 |
CN104714885A (zh) * | 2015-02-13 | 2015-06-17 | 小米科技有限责任公司 | 栈溢出位置的检测方法及装置 |
CN105809039A (zh) * | 2016-03-04 | 2016-07-27 | 南京大学 | 缓冲区溢出漏洞自动修复方法 |
Also Published As
Publication number | Publication date |
---|---|
CN107895115A (zh) | 2018-04-10 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9432400B2 (en) | Method and system for protecting against unknown malicious activities by detecting a heap spray attack on an electronic device | |
US10176327B2 (en) | Method and device for preventing application in an operating system from being uninstalled | |
CN107330328B (zh) | 防御病毒攻击的方法、装置及服务器 | |
US11347865B2 (en) | Determining security risks in binary software code | |
US8281290B2 (en) | Software diversity using context-free grammar transformations | |
CN104239757A (zh) | 应用程序防止逆向的方法及装置、运行方法及终端 | |
US9392011B2 (en) | Web vulnerability repair apparatus, web server, web vulnerability repair method, and program | |
CN101901184B (zh) | 检查应用程序漏洞的方法、装置和系统 | |
WO2017095727A1 (en) | Systems and methods for software security scanning employing a scan quality index | |
CN105678168A (zh) | 一种基于栈异常的shellcode检测方法及装置 | |
CN110414218B (zh) | 内核检测方法、装置、电子设备及存储介质 | |
CN112016096A (zh) | 一种xss漏洞的审计方法、装置 | |
CN107895115B (zh) | 防止栈溢出的方法、装置及终端设备 | |
US11868465B2 (en) | Binary image stack cookie protection | |
CN110502900B (zh) | 一种检测方法、终端、服务器及计算机存储介质 | |
CN104077528A (zh) | 病毒检测方法、装置以及终端 | |
US11283836B2 (en) | Automatic decoy derivation through patch transformation | |
CN113934507A (zh) | 基于污点标志跟踪检测jQuery库隐私泄露的方法和装置 | |
CN111475168A (zh) | 一种代码编译方法及装置 | |
CN114416108B (zh) | 基于Android资源文件索引表对抗反编译的方法、系统及装置 | |
US10200401B1 (en) | Evaluating results of multiple virtual machines that use application randomization mechanism | |
CN110147238B (zh) | 一种程序编译方法、装置及系统 | |
CN111796832B (zh) | 热补丁文件生成方法、装置、设备及存储介质 | |
CN116049823B (zh) | 一种内存马检测方法、装置、计算机设备及存储介质 | |
CN104239800B (zh) | Pdf中触发漏洞威胁的检测方法及装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210721 Address after: 100080 room 401-3, 4th floor, building 1, yard 1, Danling street, Haidian District, Beijing Patentee after: Beijing Yuanxin Junsheng Technology Co.,Ltd. Address before: 100176 room 2222, building D, building 33, 99 Kechuang 14th Street, Beijing Economic and Technological Development Zone, Beijing Patentee before: BEIJING YUANXIN SCIENCE & TECHNOLOGY Co.,Ltd. |
|
EE01 | Entry into force of recordation of patent licensing contract | ||
EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20180410 Assignee: Yuanxin Information Technology Group Co.,Ltd. Assignor: Beijing Yuanxin Junsheng Technology Co.,Ltd. Contract record no.: X2021110000024 Denomination of invention: Method, device and terminal device for preventing stack overflow Granted publication date: 20210129 License type: Common License Record date: 20210804 |