search for: semmle

Displaying 3 results from an estimated 3 matches for "semmle".

Did you mean: semble
2018 Nov 01
0
Icecast 2.4.4 - security release
...inition that enables URL authentication. ??? * A malicious client could send long HTTP headers, leading to a buffer overflow and potential remote code execution. ??? * The problematic code was introduced in version 2.4.0 and was now brought to our attention by Nick Rolfe of Semmle Security Research Team https://lgtm.com/security -?? Worked around buffer overflows in URL auth's cURL interface. ??? * We currently do not believe that this issue is exploitable. It would require a malicious URL authentication back end server ?to send a crafted payload and make it t...
2018 Nov 01
0
Icecast 2.4.4 - security release
...inition that enables URL authentication. ??? * A malicious client could send long HTTP headers, leading to a buffer overflow and potential remote code execution. ??? * The problematic code was introduced in version 2.4.0 and was now brought to our attention by Nick Rolfe of Semmle Security Research Team https://lgtm.com/security -?? Worked around buffer overflows in URL auth's cURL interface. ??? * We currently do not believe that this issue is exploitable. It would require a malicious URL authentication back end server ?to send a crafted payload and make it t...
2020 Jan 28
3
Where does LTO remove unused functions?
Hi! LLVM newbie here, I was mainly working on the frontend so far. We had a small hackathon project idea to piggyback on LTO to detect dead code (unused functions). The basic idea is to compile the code for every target and dump the removed functions. Intersect the function symbol names for each target and those functions should be safe to remove from the source code (unless there were some