1. Forum
  2. NIXNet
  3. NIX_AUTO

  • Defeating KASLR by Doing Nothing at All (Project Zero)

    From LWN.net@86:200/23 to All on Tue Nov 4 06:40:08 2025
    The Project Zero blog explains
    that, on 64-bit Arm systems, the kernel's direct map is always placed at
    the same virtual location, regardless of whether kernel address-space
    layout randomization (KASLR) is enabled.

    While it remains true that KASLR should not be trusted to prevent
    exploitation, particularly in local contexts, it is regrettable
    that the attitude around Linux KASLR is so fatalistic that putting
    in the engineering effort to preserve its remaining integrity is
    not considered to be worthwhile. The joint effect of these two
    issues dramatically simplified what might otherwise have been a
    more complicated and likely less reliable exploit.

    https://lwn.net/Articles/1044867/
    --- SBBSecho 3.29-Linux
    * Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (86:200/23)