** Description changed: + [Impact] + + * MemoryDenyWritePolicy can be bypassed by using a slightly different + syscall. + + [Test Case] + + * Check that MemoryDenyWritePolicy, blocks pkey_mprotect as well as + mprotect. + + [Regression Potential] + + * Upstream fix cherrypick, security vulnerability. + + [Other Info] + + * Original report + Hello, We would like to report to you a vulnerability about systemd which allows to bypass the MemoryDenyWriteExecution policy on Linux 4.9+. The vulnerability is described in the attached PDF file. - - Sincerely, + Sincerely, Thomas IMBERT
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1725348 Title: Systemd - Bypassing MemoryDenyWriteExecution policy To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1725348/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs