Mingjian Zhou · Jan 2, 2019 · 9:34 AM UTC

Mingjian Zhou

Mingjian Zhou @Mingjian_Zhou

2 Jan 2019

Linux kernel 4.20 included the KSMA mitigation completed by C0RE Team @_2freeman. Here's a post in Chinese: c0reteam.org/2019/01/02/ksma

This Post was deleted by the Post author.

Marius (wishi) · Jan 2, 2019 · 11:34 AM UTC

Marius (wishi) @windsheep_

2 Jan 2019

I am sure I know their reply already ;)

grsecurity · Jan 2, 2019 · 12:43 PM UTC

grsecurity @grsecurity

2 Jan 2019

What KERNEXEC did in 2003? ;)

grsecurity · Jan 2, 2019 · 12:49 PM UTC

grsecurity @grsecurity

2 Jan 2019

slide 7: pax.grsecurity.net/docs/PaXT… (maybe this was the first time it was mentioned in public, wasn't really advertised)

grsecurity · Jan 2, 2019 · 1:10 PM UTC

grsecurity @grsecurity

2 Jan 2019

But I think this came up even more recently (say within the past 2 or 3 years) when some researchers found they couldn't attack a grsec kernel's top level page tables like they could on some other OSes (but didn't understand why, iirc) Can't seem to find the tweets here about it

PaX Team · Jan 2, 2019 · 3:10 PM UTC

PaX Team · Jan 2, 2019 · 3:10 PM UTC

PaX Team @paxteam

2 Jan 2019

Replying to @grsecurity @windsheep_ @revskills @Mingjian_Zhou @_2freeman

cansecwest.com/slides/2016/C… that? ;)

Jan 2, 2019 · 3:10 PM UTC

Shawn C - citypw@ioc.exchange · Jan 2, 2019 · 4:12 PM UTC

Shawn C - citypw@ioc.exchange @citypw

2 Jan 2019

Replying to @paxteam @grsecurity @windsheep_ @revskills @Mingjian_Zhou @_2freeman

should be this one: blackhat.com/docs/asia-18/as… the public exp( in the slide) unlikely to successful on kernel enabled w/ VDSO which exists in KERNEXEC for years.

grsecurity · Jan 2, 2019 · 10:06 PM UTC

grsecurity @grsecurity

2 Jan 2019

Replying to @paxteam @windsheep_ @revskills @Mingjian_Zhou @_2freeman

This is the one, but there were also some Twitter comments around the same time (I don't remember if before or after the presentation)