Today I learned, courtesy of @DirtyCOWVuln, that ptrace(PTRACE_POKEDATA) can write to readonly mappings. Now I'm unhappy.
-
-
Replying to @nelhage
gotta set break points, right? But yeah, ptrace remains scary. :( proposed SELinux mitigation at least: https://patchwork.kernel.org/patch/9355123/
1 reply 0 retweets 2 likes -
Replying to @kees_cook
Yeah, I eventually pieced together why we have this behavior. Still don't like it :(
1 reply 0 retweets 0 likes -
Replying to @nelhage @kees_cook
the really fun part is that PTRACE_POKEDATA isn't the only thing doing forced writes
1 reply 0 retweets 1 like
also /proc/$pid/mem and various drivers that can do memory-mapped IO
11:05 PM - 20 Oct 2016
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.