Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 8 Jul 2024 14:09:59 -0400
From: Will Dormann <will.dormann@...lygence.com>
To: oss-security@...ts.openwall.com
Subject: Re: ASLRn't is still alive and well on x86 kernels,
 despite CVE-2024-26621 patch

On 7/8/24 1:28 PM, Florian Weimer wrote:
> The kernel should not apply hugepage optimizations to mappings created
> with MAP_DENYWRITE.

FWIW, Grsecurity has published a blog post about this topic that covers 
much more nuance than the original "ASLRn't" blog post:
<https://grsecurity.net/toolchain_necromancy_past_mistakes_haunting_aslr>



-WD

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.