[exim-cvs] Suggestion from Qalys:

Αρχική Σελίδα
Delete this message
Reply to this message
Συντάκτης: Exim Git Commits Mailing List
Ημερομηνία:  
Προς: exim-cvs
Αντικείμενο: [exim-cvs] Suggestion from Qalys:
Gitweb: https://git.exim.org/exim.git/commitdiff/3109898a5e815a04f505c73b67493ef15d9f0665
Commit:     3109898a5e815a04f505c73b67493ef15d9f0665
Parent:     d8c9f31a3ec7a424ac9465604c397f1882b05567
Author:     Jeremy Harris <jgh146exb@???>
AuthorDate: Fri May 7 13:09:12 2021 +0100
Committer:  Jeremy Harris <jgh146exb@???>
CommitDate: Mon Jun 28 00:30:02 2021 +0100


    Suggestion from Qalys:


    If I may add one more thing, there is an issue that should be addressed
    sooner rather than later: the writable configuration at the beginning of
    the heap. A short-term (and hopefully non-intrusive) solution may be to
    mmap() the configuration instead, and then mprotect(PROT_READ) it. This
    would mitigate the exploitation technique that almost all Exim exploits
    have been using.