Text relocations in kernel modules

Mike Pumford mpumford at mpcdata.com
Wed Apr 4 15:57:08 UTC 2012

jb wrote:

>> From the point of view of an attacker it does not matter whether kernel module
> is loaded and linked once only. That's enough to create a window of opportunity
> for interfering with relocation process and modifying text (code).
Well yes but said attacker has to be able to modify KERNEL memory to do 
it. If they can do that worrying about module relocations is pointless 
as they already own the machine.


More information about the freebsd-stable mailing list