Integer Overflow and operator::new

As Raymond Chen pointed out last year (, there is a potential integer overflow when calling operator::new. The C++ compiler in Visual Studio 2005 automatically generates defensive code to mitigate this potential vulnerability.   Code like this:   class CFoo { public:       CFoo() {m_p = NULL;} private:       void *m_p; };   void *func(size_t…


"Doing a Dave" : UK Developer Security Site

This is freakin’ hilarious – gotta love the British sense of humo[u]r. Is this the new ‘blackhat’? er, black cat?