1. Forum
  2. tqwNet
  3. TQW LINUX

  • [$] Per-call-site slab caches for heap-spraying protection

    From LWN.net@1337:1/100 to All on Tue Aug 20 14:30:05 2024
    [$] Per-call-site slab caches for heap-spraying protection

    Date:
    Tue, 20 Aug 2024 13:29:07 +0000

    Description:
    One tactic often used by attackers set on compromising a system is heap spraying ; in
    short, the attacker fills as much of the heap as possible with crafted data
    in the hope of getting the target system to use that data in a bad way. If heap spraying can be blocked, attackers will lose an important tool. The kernel has some heap-spraying defenses now, including the dedicated bucket allocator merged for the
    upcoming 6.11 release, but its author, Kees Cook, thinks that more can be
    done.

    ======================================================================
    Link to news story:
    https://lwn.net/Articles/986174/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)