[CVE-2015-8967] [Trusty] [PATCH 1/1] arm64: make sys_call_table const
Brad Figg
brad.figg at canonical.com
Fri Jun 9 14:40:32 UTC 2017
CVE-2015-8967
As with x86, mark the sys_call_table const such that it will be placed
in the .rodata section. This will cause attempts to modify the table
(accidental or deliberate) to fail when strict page permissions are in
place. In the absence of strict page permissions, there should be no
functional change.
Mark Rutland (1):
arm64: make sys_call_table const
arch/arm64/kernel/sys.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
--
2.7.4
More information about the kernel-team
mailing list