[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CVE-2016-3672 - Unlimiting the stack not longer disables ASLR

To: fulldisclosure@xxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx, bugs@xxxxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx, oss-security@xxxxxxxxxxxxxxxxxx
Subject: CVE-2016-3672 - Unlimiting the stack not longer disables ASLR
From: Hector Marco-Gisbert <hecmargi@xxxxxx>
Date: Wed, 6 Apr 2016 14:58:48 +0200

Hi everyone,

We have fixed an old and very known weakness in the Linux ASLR implementation.

The weakness allowed any user able to running 32-bit applications in a x86
machine disable the ASLR by setting the RLIMIT_STACK resource to unlimited.

This is a very old trick to disable ASLR, but unfortunately it was still present
in current Linux systems.

Details at:
http://hmarco.org/bugs/CVE-2016-3672-Unlimiting-the-stack-not-longer-disables-ASLR.html


Best,
Hector.



-- 
Dr. Hector Marco-Gisbert @ http://hmarco.org/
Cyber Security Researcher @ http://cybersecurity.upv.es
Universitat Politècnica de València (Spain)

Prev by Date: SQL Injection in SocialEngine
Next by Date: Cisco Security Advisory: Cisco TelePresence Server Crafted IPv6 Packet Handling Denial of Service Vulnerability
Previous by thread: SQL Injection in SocialEngine
Next by thread: Cisco Security Advisory: Cisco TelePresence Server Crafted IPv6 Packet Handling Denial of Service Vulnerability
Index(es):
- Date
- Thread