Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20191124205319.GA8990@openwall.com>
Date: Sun, 24 Nov 2019 21:53:19 +0100
From: Solar Designer <solar@...nwall.com>
To: lkrg-users@...ts.openwall.com
Subject: Re: List of vulnerabilities blocked by LKRG after the first release of LKRG?

Hi Patrick,

On Thu, Nov 21, 2019 at 02:20:00PM +0000, Patrick Schleizer wrote:
> Do you have a list (or a few examples) of vulnerabilities that were
> blocked by LKRG since the time LKRG existed? I.e. since the time users
> had a chance to have had LKRG installed?
> 
> Also interesting would be if these vulnerability would have had
> capability to bypass LKRG (full read/write primitive) or not have had
> LKRG bypass capability.

We do not have such a list.  Maybe Adam can identify some examples like
we did for the older examples that we listed at LKRG release time.

Also, I assume that in the first paragraph you refer to exploits rather
than to vulnerabilities, as you correctly draw the distinction in the
second paragraph.

> That would be useful for LKRG documentation purposes.

Sure, but it's substantial effort to figure this out for more than just
a few examples.

Alexander

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.