On Wed, Jun 21, 2017 at 06:12:40PM +0000, Soren Jacobsen wrote: > Module Name: src > Committed By: snj > Date: Wed Jun 21 18:12:40 UTC 2017 > > Modified Files: > src/sys/kern [netbsd-8]: exec_subr.c > > Log Message: > Pull up following revision(s) (requested by joerg in ticket #50): > sys/kern/exec_subr.c: revision 1.79 > Always include a 1MB guard area beyond the end of stack. While ASLR will > normally create a guard area as well, this provides a deterministic area > for all binaries. > Mitigates the rest of CVE-2017-1000374 and CVE-2017-1000375 from > Qualys. > > > To generate a diff of this commit: > cvs rdiff -u -r1.78 -r1.78.2.1 src/sys/kern/exec_subr.c
joerg reverted this one, stating it breaks i386 http://mail-index.netbsd.org/source-changes/2017/06/19/msg085502.html