The Correctness-Security Gap in Compiler Optimization

   Abstract