[grsec] PAX_REFCOUNT doesn't work
Carlos Carvalho
carlos at fisica.ufpr.br
Tue Sep 2 13:47:53 EDT 2008
pageexec at freemail.hu (pageexec at freemail.hu) wrote on 2 September 2008 18:49:
>as for the cure vs. disease, there's nothing that can be worse by using
>this new PaX feature because an attacker can already cause the memory leak
>at will (that is, if he's able to trigger the bug then he can stop short
>of exploiting it). in fact, the memory leak already occurs regardless of
>this protection (this is how one would spot it normal use), where PaX
>enters the picture is that it prevents it from becoming exploitable.
I'll use it and report if there are problems.
More information about the grsecurity
mailing list