Date: Sun, 27 Sep 2009 14:49:51 +0000 (UTC) From: "Simon L. Nielsen" <simon@FreeBSD.org> To: cvs-src-old@freebsd.org Subject: cvs commit: src/sys/vm vm_mmap.c Message-ID: <200909271450.n8REo1H2006866@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
simon 2009-09-27 14:49:51 UTC
FreeBSD src repository
Modified files:
sys/vm vm_mmap.c
Log:
SVN rev 197537 on 2009-09-27 14:49:51Z by simon
Do not allow mmap with the MAP_FIXED argument to map at address zero.
This is done to make it harder to exploit kernel NULL pointer security
vulnerabilities. While this of course does not fix vulnerabilities,
it does mitigate their impact.
Note that this may break some applications, most likely emulators or
similar, which for one reason or another require mapping memory at
zero.
This restriction can be disabled with the security.bsd.mmap_zero
sysctl variable.
Discussed with: rwatson, bz
Tested by: bz (Wine), simon (VirtualBox)
Submitted by: jhb
Revision Changes Path
1.235 +18 -1 src/sys/vm/vm_mmap.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200909271450.n8REo1H2006866>