• henfredemars@infosec.pub
    link
    fedilink
    English
    arrow-up
    4
    ·
    4 months ago

    Just got to keep making it suck even worse trying to exploit a UAF in the kernel don’t you?

    Nice work! Let’s make zero days harder.

  • AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    4
    ·
    4 months ago

    This is the best summary I could come up with:


    The SLAB pull request landed in Linux 6.11 Git on Thursday with kmem_buckets-based hardening of kernel memory allocations.

    This hardening is the latest Linux security improvement addressed by Google’s Kees Cook.

    This may very slightly increase memory fragmentation, though in practice it’s only a handful of extra pages since the bulk of user-controlled allocations are relatively long-lived."

    Addressing these cases is limited in scope, so isolating these kinds of interfaces will not become an unbounded game of whack-a-mole.

    Note that these caches are specifically flagged with SLAB_NO_MERGE, since merging would defeat the entire purpose of the mitigation.

    This dedicated bucket allocator landed in the Linux 6.11 kernel yesterday via the SLAB pull request.


    The original article contains 378 words, the summary contains 113 words. Saved 70%. I’m a bot and I’m open source!