This version is no longer supported. If this is still reproducible on a
newer/supported version, please reopen.
** Changed in: linux (Ubuntu)
Status: Confirmed => Won't Fix
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/717412
Title:
NX-emulation ASLR is predictable
Status in linux package in Ubuntu:
Won't Fix
Bug description:
On 32bit non-PAE systems, the NX-emulation patch causes shared library
and executable ASLR to become predictable due to moving the ranges up
into the "ASCII Armor" area prefixed with a high byte of "0". This has
been observed multiple times. Some discussion is here:
http://www.mail-
archive.com/[email protected]/msg00551.html
Trivial demonstration (from http://www.mail-
archive.com/[email protected]/msg00561.html):
$ for i in $(seq 1 1000); do cat /proc/self/maps | grep 'x.*/lib/.*libc';
done | sort | uniq -c | sort -n
...[768 lines of differing addresses]...
3 00de3000-00f36000 r-xp 00000000 fb:01 130850
/lib/tls/i686/cmov/libc-2.11.1.so
174 00110000-00263000 r-xp 00000000 fb:01 130850
/lib/tls/i686/cmov/libc-2.11.1.so
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/717412/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
