Text relocations in kernel modules
Mike Pumford
mpumford at mpcdata.com
Wed Apr 4 15:57:08 UTC 2012
jb wrote:
>> From the point of view of an attacker it does not matter whether kernel module
> is loaded and linked once only. That's enough to create a window of opportunity
> for interfering with relocation process and modifying text (code).
>
Well yes but said attacker has to be able to modify KERNEL memory to do
it. If they can do that worrying about module relocations is pointless
as they already own the machine.
Mike
More information about the freebsd-stable
mailing list