13
edits
Changes
no edit summary
** Chrome never evals a content-tainted string.
** C++ never snprintfs using a content-tainted string.
* SpiderMonkey Exact-GC safety bugs. [GC_SafetySpec]
** "Not stored in the heap" pointer dataflow analysis.
*** DONE: This is done and is now a feature of Oink.
* Dataflow enforcement of correct API usage (CQual++):
** String character set encoding mistakes.