The poisoned NUL byte, 2014 edition (Project Zero)

Posted Aug 26, 2014 15:52 UTC (Tue) by nnewton (subscriber, #40661)
In reply to: The poisoned NUL byte, 2014 edition (Project Zero) by imitev
Parent article: The poisoned NUL byte, 2014 edition (Project Zero)

I run grsec kernels on RHEL6 without much issue. Although the most recent kernel build has been bit by this: https://bugzilla.kernel.org/show_bug.cgi?id=60758

It definitely is a bit more work than running RH kernels, but when things like this come up it certainly seems worth the effort. We have specfiles here: https://github.com/orgs/el-grsecurity/dashboard, however, we are currently tracking down an issue with overflow detection.

The poisoned NUL byte, 2014 edition (Project Zero)

Posted Aug 26, 2014 17:00 UTC (Tue) by imitev (guest, #60045) [Link]

Thanks !
Last time I've searched about centos/RH + grsec I didn't find that github page. I'll definitely try to build and test a kernel when time allows.