The ExecShield patches
Posted Jul 19, 2005 19:33 UTC (Tue) by jwb
Parent article: Kernel Summit 2005: The ExecShield patches
/dev/mem is only writable by root. If an attacker has root access, they can load modules which make /dev/mem writable or implements an entirely different device which serves the same purpose.
The other improvements all seems sensible.
to post comments)