Confirmed users
502
edits
B2G/Architecture/System Security: Difference between revisions
Jump to navigation
Jump to search
m
B2G/Architecture/System Security (view source)
Revision as of 22:45, 3 December 2012
, 3 December 2012no edit summary
Gdestuynder (talk | contribs) (→rlimit) |
Gdestuynder (talk | contribs) mNo edit summary |
||
| Line 251: | Line 251: | ||
=== Risks === | === Risks === | ||
* Loading libraries and application code at predictable or fixed addresses leads to easy exploitation of memory | * Loading libraries and application code at predictable or fixed addresses leads to easy exploitation of memory corruption vulnerabilities | ||
corruption vulnerabilities | |||
=== Proposed Implementations === | === Proposed Implementations === | ||
| Line 264: | Line 263: | ||
** Requires patching of various components | ** Requires patching of various components | ||
*** Failure to do would result in only partial ASLR, which is no better than no ASLR | *** Failure to do would result in only partial ASLR, which is no better than no ASLR | ||
** May lead to slower process startup and high performance penalties | ** May lead to slower process startup and high performance penalties - however, recent builds of B2G pre-start a content-process, which may hide any performance penalty | ||
== Updates == | == Updates == | ||