On Thu, Jul 6, 2017 at 1:48 PM, Thomas Gleixner wrote:
> On Thu, 6 Jul 2017, Thomas Garnier wrote:
>> On Wed, Jun 28, 2017 at 10:52 AM, Kees Cook wrote:
>> >
>> > On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
>> > > On Wed,
On Thu, Jul 6, 2017 at 1:48 PM, Thomas Gleixner wrote:
> On Thu, 6 Jul 2017, Thomas Garnier wrote:
>> On Wed, Jun 28, 2017 at 10:52 AM, Kees Cook wrote:
>> >
>> > On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
>> > > On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier
>> > > wrote:
>> > >>
On Thu, 6 Jul 2017, Thomas Garnier wrote:
> On Wed, Jun 28, 2017 at 10:52 AM, Kees Cook wrote:
> >
> > On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
> > > On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier
> > > wrote:
> > >>
On Thu, 6 Jul 2017, Thomas Garnier wrote:
> On Wed, Jun 28, 2017 at 10:52 AM, Kees Cook wrote:
> >
> > On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
> > > On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier
> > > wrote:
> > >> Ensure the address limit is a user-mode segment before returning to
On Wed, Jun 28, 2017 at 10:52 AM, Kees Cook wrote:
>
> On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
> > On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier wrote:
> >> Ensure the address limit is a user-mode segment before
On Wed, Jun 28, 2017 at 10:52 AM, Kees Cook wrote:
>
> On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
> > On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier wrote:
> >> Ensure the address limit is a user-mode segment before returning to
> >> user-mode. Otherwise a process can corrupt
On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
> On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier wrote:
>> Ensure the address limit is a user-mode segment before returning to
>> user-mode. Otherwise a process can corrupt kernel-mode memory and
On Tue, Jun 20, 2017 at 1:24 PM, Kees Cook wrote:
> On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier wrote:
>> Ensure the address limit is a user-mode segment before returning to
>> user-mode. Otherwise a process can corrupt kernel-mode memory and elevate
>> privileges [1].
>>
>> The set_fs
On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier wrote:
> Ensure the address limit is a user-mode segment before returning to
> user-mode. Otherwise a process can corrupt kernel-mode memory and elevate
> privileges [1].
>
> The set_fs function sets the TIF_SETFS flag to force
On Wed, Jun 14, 2017 at 6:12 PM, Thomas Garnier wrote:
> Ensure the address limit is a user-mode segment before returning to
> user-mode. Otherwise a process can corrupt kernel-mode memory and elevate
> privileges [1].
>
> The set_fs function sets the TIF_SETFS flag to force a slow path on
>
Ensure the address limit is a user-mode segment before returning to
user-mode. Otherwise a process can corrupt kernel-mode memory and elevate
privileges [1].
The set_fs function sets the TIF_SETFS flag to force a slow path on
return. In the slow path, the address limit is checked to be USER_DS if
Ensure the address limit is a user-mode segment before returning to
user-mode. Otherwise a process can corrupt kernel-mode memory and elevate
privileges [1].
The set_fs function sets the TIF_SETFS flag to force a slow path on
return. In the slow path, the address limit is checked to be USER_DS if
12 matches
Mail list logo