Buffer over-read

In computer security and programming, a buffer over-read^[1]^[2] or out-of-bounds read^[3] is an anomaly where a program, while reading data from a buffer, overruns the buffer's boundary and reads (or tries to read) adjacent memory. This is a special case of violation of memory safety.

At other times, buffer over-reads not caused by malicious input can lead to crashes if they trigger invalid page faults. For example, widespread IT outages in 2024 were caused by an out-of-bounds memory error in cybersecurity software developed by CrowdStrike.^[4]

Programming languages commonly associated with buffer over-reads include C and C++, which provide no built-in protection against using pointers to access data in any part of virtual memory, and which do not automatically check that reading data from a block of memory is safe; respective examples are attempting to read more elements than contained in an array, or failing to append a trailing terminator to a null-terminated string. Bounds checking can prevent buffer over-reads,^[5] while fuzz testing can help detect them.

References

↑ "CWE – CWE-126: Buffer Over-read". Common Weakness Enumeration (list version 4.15). February 18, 2014. http://cwe.mitre.org/data/definitions/126.html. Retrieved July 24, 2024.
↑ Strackx, Raoul; Younan, Yves; Philippaerts, Pieter; Piessens, Frank; Lachmund, Sven; Walter, Thomas (2009-01-01). "Breaking the memory secrecy assumption". Proceedings of the Second European Workshop on System Security. EUROSEC '09. New York, NY, USA: ACM. pp. 1–8. doi:10.1145/1519144.1519145. ISBN 9781605584720. https://lirias.kuleuven.be/handle/123456789/228745.
↑ "CWE - CWE-126: Buffer Over-read". Common Weakness Enumeration (list version 4.15). https://cwe.mitre.org/data/definitions/125.html. Retrieved July 24, 2024.
↑ "Falcon Content Update Remediation and Guidance Hub | CrowdStrike" (in en). https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/.
↑ "Efficient protection against heap-based buffer overflows without resorting to magic". Dept. of Computer Science, Katholieke Universiteit Leuven. 2013-02-25. http://www.fort-knox.org/files/younan_malloc.pdf. Retrieved 2014-04-24.

External links

0.00

(0 votes)

Original source: https://en.wikipedia.org/wiki/Buffer over-read. Read more

[1] "CWE – CWE-126: Buffer Over-read". Common Weakness Enumeration (list version 4.15). February 18, 2014. http://cwe.mitre.org/data/definitions/126.html. Retrieved July 24, 2024.

[2] Strackx, Raoul; Younan, Yves; Philippaerts, Pieter; Piessens, Frank; Lachmund, Sven; Walter, Thomas (2009-01-01). "Breaking the memory secrecy assumption". Proceedings of the Second European Workshop on System Security. EUROSEC '09. New York, NY, USA: ACM. pp. 1–8. doi:10.1145/1519144.1519145. ISBN 9781605584720. https://lirias.kuleuven.be/handle/123456789/228745.

[3] "CWE - CWE-126: Buffer Over-read". Common Weakness Enumeration (list version 4.15). https://cwe.mitre.org/data/definitions/125.html. Retrieved July 24, 2024.

[4] "Falcon Content Update Remediation and Guidance Hub | CrowdStrike" (in en). https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/.

[5] "Efficient protection against heap-based buffer overflows without resorting to magic". Dept. of Computer Science, Katholieke Universiteit Leuven. 2013-02-25. http://www.fort-knox.org/files/younan_malloc.pdf. Retrieved 2014-04-24.

[1]

[2]

[3]

[4]

[5]

v t e Memory management
Memory management as a function of an operating system
Manual memory management	Static memory allocation C dynamic memory allocation new and delete (C++)
Virtual memory	Demand paging Page table Paging Virtual memory compression
Hardware	Memory management unit Translation lookaside buffer
Garbage collection	Boehm garbage collector Concurrent mark sweep collector Finalizer Garbage Garbage-first collector Mark-compact algorithm Reference counting Tracing garbage collection Strong reference Weak reference
Memory segmentation	Protected mode Real mode Virtual 8086 mode x86 memory segmentation
Memory safety	Buffer overflow Buffer over-read Dangling pointer Stack overflow
Issues	Fragmentation Memory leak Unreachable memory
Other	Automatic variable International Symposium on Memory Management Region-based memory management

Anonymous

Search

Buffer over-read

Namespaces

More

Page actions

See also

References

External links

Navigation

Navigation

Resources

Help

googletranslator

Navigation

Wiki tools

Wiki tools

Anonymous

Search

Buffer over-read

See also

References

External links

Navigation

Wiki tools

Page tools

Other projects

Categories