Kernel compiled with Stack Protector ?
J Doe
general at nativemethods.com
Fri Sep 15 15:17:11 UTC 2017
>
> You should take into account that the stackprotector will only save you
> from remote *execution* ... this is only one aspect of the
> vulnerability ...
>
> AFAIK an attacker could still crash your machine (or single processes
> on it) remotely ...
>
> so make sure the libs listed in
> https://usn.ubuntu.com/usn/usn-3413-1/
> are all up to date to have the actual fix for the issue ...
>
> ciao
> oli
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
Hi Oliver,
Yes - AFAIK Stack Guard demotes one exploit from RCE to kernel panic. I will opt for a kernel panic over RCE any day.
I also stay up to date on patches for the base and libraries.
- J
More information about the ubuntu-users
mailing list