Protecting against kernel NULL-pointer derefs
Pieter de Boer
pieter at thedarkside.nl
Tue Sep 15 13:01:00 UTC 2009
Dag-Erling Smørgrav wrote:
>> 'amount' => 2, 'of late' is more figure of speech than anything
>> else. For me, amount was high enough to get interested and 'of late'
>> may be because I've not been looking long enough.
>
> A search of FreeBSD security advisories shows two in the last four
> years, plus the current unreleased issue. I agree that there is no
> reason to allow applications to mmap() at address 0, but surely there
> must be a better way to make your case than to sow FUD?
I have no intention to sow FUD. Three such advisories is not much, but
if there is a simple/inexpensive way to ensure that such bugs are not
exploitable to gain root, I think 'we' should consider it.
--
Pieter
More information about the freebsd-security
mailing list