[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [autoconf] Problems Configuring (C Compiler cannot produce executabl
From: |
Mike Frysinger |
Subject: |
Re: [autoconf] Problems Configuring (C Compiler cannot produce executables) |
Date: |
Wed, 22 Aug 2012 19:21:35 -0400 |
User-agent: |
KMail/1.13.7 (Linux/3.5.0; KDE/4.6.5; x86_64; ; ) |
On Wednesday 22 August 2012 18:17:37 Jeffrey Walton wrote:
> The posture would have saved a number of folks from, for example,
> Pidgin's latest rounds of Critical Vulnerabilities (memory corruption
> and code execution). No-exec stacks and heaps would have reduced
> many/most to an annoying UI problem (a call to abort()).
bad example: pidgin doesn't require execstacks (i'm not sure it ever has), so
that would have made 0 difference. no one does exec-heaps by default ... the
code itself has to explicitly do this, and there's nothing the toolchain could
have done to stop that (not that pidgin enables exec on memory returned by
malloc afaik). only a kernel patch (such as PaX) which explicitly denies
mprotect calls that try to enable exec & write bits simultaneously would have
prevented this scenario proactively.
in fact, very little to no packages request an executable stack by default.
binary-only packages tend to be the only ones nowadays that do, and that's
usually because the people producing the pkgs have broken code.
-mike
signature.asc
Description: This is a digitally signed message part.
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), (continued)
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Russ Allbery, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Jeffrey Walton, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Russ Allbery, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Mike Frysinger, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Jeffrey Walton, 2012/08/23
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Jeffrey Walton, 2012/08/23
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Jeffrey Walton, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables),
Mike Frysinger <=
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Jeffrey Walton, 2012/08/23
- Re: Problems Configuring (C Compiler cannot produce executables), Miles Bader, 2012/08/23
- Re: Problems Configuring (C Compiler cannot produce executables), Russ Allbery, 2012/08/23
- Re: [autoconf] Re: Problems Configuring (C Compiler cannot produce executables), suzuki toshiya, 2012/08/23
- Re: Problems Configuring (C Compiler cannot produce executables), Ralf Corsepius, 2012/08/23
- Re: Problems Configuring (C Compiler cannot produce executables), Russ Allbery, 2012/08/23
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Mike Frysinger, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Jeffrey Walton, 2012/08/22
- Re: [autoconf] Problems Configuring (C Compiler cannot produce executables), Mike Frysinger, 2012/08/22