• ipkpjersi
    link
    fedilink
    arrow-up
    3
    ·
    4 months ago

    I don’t think memory leaks could ever amount to a security vulnerability

    In theory it could, after all there are technically denial-of-service vulnerabilities (not DoS/DDoS attacks, that is something different) according to CVE Numbering Athorities.

    • Maybe I’m misunderstanding you, but DoS is exactly the same thing as “denial of service”.

      My point is that memory leaks can only degrade availability; they are categorically distinct from security vulnerabilities.

      • ipkpjersi
        link
        fedilink
        arrow-up
        1
        ·
        edit-2
        4 months ago

        I think you might be misunderstanding me.

        According to the CVE Numbering Athorities, there can be vulnerabilities that result in service being denied, and they refer to them as a denial-of-service vulnerability. For example, there can be a bug in a program that causes it to crash if you perform a certain set of steps/actions, thus resulting in the service being denied. Whereas traditionally, a DoS/DDoS attack is simply flooding a target with more bandwidth than they have available downstream bandwidth. Sending massive amounts of data to overwhelm a service is not the same thing as finding a unique set of actions to cause the program to crash.

        So in theory, yes, a memory leak could amount to and result in a security vulnerability, like if the memory leak is reproducible and so severe it causes a service to crash.

        • Aha, I didn’t realize compromising availability was sufficient for the CVE definition of security vulnerability. Projects I’ve worked on have typically excluded availability, though that may not be the norm.

          And I see your point about some exploits being highly asymmetric in the attacker’s favor, compared to classic [D]DoS.