quoting grsec developer: "Using the RBAC system's PaX flag support to enforce system-wide MPROTECT enabling could have prevented triggering of the bug, since it requires the creation of an executable stack to trigger the vma mirroring bug."
I 've tested the exploit on 2.6 kernel in an Alpha pl...
quoting grsec developer: "Using the RBAC system's PaX flag support to enforce system-wide MPROTECT enabling could have prevented triggering of the bug, since it requires the creation of an executable stack to trigger the vma mirroring bug."
I 've tested the exploit on 2.6 kernel in an Alpha pl...
[ more ]