all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exploiting null-dereferences in the Linux kernel

Add to bookmarks
g
Jan. 19, 2023, 5:33 p.m. | noreply@blogger.com (Google Project Zero)

Project Zero googleprojectzero.blogspot.com

Posted by Seth Jenkins, Project Zero

For a fair amount of time, null-deref bugs were a highly exploitable kernel bug class. Back when the kernel was able to access userland memory without restriction, and userland programs were still able to map the zero page, there were many easy techniques for exploiting null-deref bugs. However with the introduction of modern exploit mitigations such as SMEP and SMAP, as well as mmap_min_addr preventing unprivileged programs from mmap’ing low addresses, null-deref bugs are …

access back bug bugs class exploit exploiting fair introduction jenkins kernel kernel bug linux linux kernel map memory mitigations project project zero smap techniques userland

Visit resource

More from googleprojectzero.blogspot.com / Project Zero

Pr
The Windows Registry Adventure #2: A brief history of the feature 5 days, 22 hours ago | googleprojectzero.blogspot.com
database feature google google project zero +13
Pr
The Windows Registry Adventure #1: Introduction and research results 5 days, 22 hours ago | googleprojectzero.blogspot.com
bugs december december 2023 escalation +22
Pr
First handset with MTE on the market 5 months, 2 weeks ago | googleprojectzero.blogspot.com
arm back brand device +12
Pr
An analysis of an in-the-wild iOS Safari WebContent to GPU Process exploit 6 months, 1 week ago | googleprojectzero.blogspot.com
amnesty amnesty international analysis apple +29
Pr
Analyzing a Modern In-the-wild Android Exploit 7 months ago | googleprojectzero.blogspot.com
actor analysis android android devices +19
Pr
Summary: MTE As Implemented 8 months, 3 weeks ago | googleprojectzero.blogspot.com
access arm blog blog post +13
Pr
MTE As Implemented, Part 1: Implementation Testing 8 months, 3 weeks ago | googleprojectzero.blogspot.com
access architecture arm brand +12
Pr
MTE As Implemented, Part 3: The Kernel 8 months, 3 weeks ago | googleprojectzero.blogspot.com
access architecture arm brand +11
Pr
MTE As Implemented, Part 2: Mitigation Case Studies 8 months, 3 weeks ago | googleprojectzero.blogspot.com
access architecture arm brand +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Team Lead, Security Operations Center, Cyber Risk

@ Kroll | United Kingdom
View on infosec-jobs.com

Cyber Security Risk Analyst

@ College Board | Remote - Virginia
View on infosec-jobs.com

Lead - IT Security Engineer

@ Bosch Group | BENGALURU, India
View on infosec-jobs.com

Project Cybersecurity Manager

@ Alstom | Bengaluru, KA, IN
View on infosec-jobs.com

Security Consultant

@ CloudSEK | Bengaluru, Karnataka, India
View on infosec-jobs.com
View more jobs