Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 26 Feb 2013 22:38:46 +0100
From: Yves-Alexis Perez <>
Subject: Re: CVE request - Linux kernel: VFAT slab-based
 buffer overflow

On mar., 2013-02-26 at 14:05 -0700, Kurt Seifried wrote:
> The problem with security is you have to basically do it 100%
> correctly 100% of the time

You can also look at other, more proactives approaches (hardening the
memory layout, enforcing W^X etc.). Even hardening userland might help

This is basically what's done in hardening patches like PaX/Grsecurity
(with active exploit response on top). And yes, it comes at a cost, like


Download attachment "signature.asc" of type "application/pgp-signature" (491 bytes)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.