Microsoft: 70 percent of all security bugs are memory safety issues

From a ZD Net article today “Percentage of memory safety issues has been hovering at 70 percent for the past ...
Contact Us

From a ZD Net article today “Percentage of memory safety issues has been hovering at 70 percent for the past 12 years.”. The original article is posted here.

 

“Around 70 percent of all the vulnerabilities in Microsoft products addressed through a security update each year are memory safety issues; a Microsoft engineer revealed last week at a security conference.

 

 

Memory safety is a term used by software and security engineers to describe applications that access the operating system’s memory in a way that doesn’t cause errors. Memory safety bugs happen when software, accidentally or intentionally, accesses system memory in a way that exceeds its allocated size and memory addresses. Users who often read vulnerability reports come across terms over and over again. Terms like buffer overflow, race condition, page fault, null pointer, stack exhaustion, heap exhaustion/corruption, use after free, or double free –all describe memory safety vulnerabilities.”


 

Back to the Technology News Main Page