[OE-core] [PATCH] insane: detect and warn about relocations in .text
Phil Blundell
philb at gnu.org
Wed Oct 3 12:39:30 UTC 2012
On Wed, 2012-10-03 at 12:19 +0100, Richard Purdie wrote:
> Am I right in thinking this is also a marginal help to 'security' since
> if the .text segment is loaded read only, it becomes slightly harder for
> certain kinds of overflow attacks to work?
Possibly a marginal help, though (for glibc at least) the dynamic linker
will restore the original protection on .text once the relocations have
been applied, so the window of time during which you could mount an
attack based on the writeable .text region will be fairly small. But in
principle you're right, for best security you don't want to have any
regions which are both writeable and executable.
p.
More information about the Openembedded-core
mailing list