On Tue, Jun 30, 2026 at 07:01:48AM -0700, Dave Hansen wrote: > On 6/29/26 18:22, Xiang Mei wrote: > >> Please don't even try to send a v3 without addressing this. > > This is a demo exploiting CVE-2026-31419 with this technique: > > https://github.com/google/security-research/pull/397 > > Thanks for sharing that. That's really good info. > > But what I want to hear a bit more about is why this new guard region is > a good, generic mitigation. Does it help mitigate a whole class of > vulnerabilities? > > I think you're making the claim that this ENTER technique takes what > would normally just be a DoS and makes it fully exploitable. Does this > happen for a lot of DoS bugs? Or is CVE-2026-31419 very unusual and this > stack guard gunk won't ever be useful again?
AFAICT all it really does it make it easier to set up a ROP chain. I don't think ROP is unfeasible without it.

