WingNews logo WingNews GitHub [2]
top | item 25459157

Ask HN: How do buffer overflows still happen in spite of ASLR?

4 points| hackerpain | 5 years ago | reply

Forgive me for my lack of lower level knowledge. I am kind of interested to know why in spite of advanced ASLR protection Buffer Overflow and Heap Buffer overflow happen in modern software like Chromium browser, surprising to see so many heap overflow bugs in their bug tracker.

Can someone ELI5 how buffer overflow defeats ASLR?

3 comments

order
[+] Someone|5 years ago|reply
ASLR doesn’t do anything to prevent buffer overflows; it makes it harder to exploit them.

That doesn’t mean it makes it impossible, and even if it did, the buffer overflow itself still is a bug.

[+] hackerpain|5 years ago|reply
Yes but how does that work? i have heard of unexploitable overflows how does that work?

and hey: Your username tricked me.