new blogpost:
"How a simple Linux kernel memory corruption bug can lead to complete system compromise: An analysis of current and potential kernel security mitigations"
I'll post a copy to the kernel-hardening list later in case folks want to discuss it.
googleprojectzero.blogspot.com/2021/10/how-si
Conversation
Replying to
Re page_to_virt and pointer tags: it is indeed an issue. MTE-based KASAN currently stores tags in page flags.