https://bugs.kde.org/show_bug.cgi?id=353192
--- Comment #21 from Paul Floyd <[email protected]> --- (In reply to Fredrik Tolf from comment #20) > (In reply to Paul Floyd from comment #19) > > We want to avoid being too flexible and loading/executing binaries that the > > OS would reject. On FreeBSD "WX" segments are not allowed by default. > That sounds like an issue for the mmap() implementation and/or the ELF > loader, doesn't it? If an ELF file *does* successfully get mapped, is there > a reason not to always load symbols from it? Not at all. This is a kernel security feature. Allowing both W and X means that you are allowing running code to be modified. I need to check, but as far as I know selinux has a similar feature. I need to look to see if AppArmor also supports W^X controls. -- You are receiving this mail because: You are watching all bug changes.
