MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
code
Recherche

Man Yue Mo: Gaining kernel code execution on an MTE-enabled Pixel 8

mardi 19 mars 2024, 14:39 , par LWN.net
Man Yue Mo explains
how to compromise a Pixel 8 phone even when the Arm memory-tagging extension is in use, by taking
advantage of the Mali GPU.

So, by using the GPU to access physical addresses directly, I'm
able to completely bypass the protection that MTE
offers. Ultimately, there is no memory safe code in the code that
manages memory accesses. At some point, physical addresses will
have to be used directly to access memory.
https://lwn.net/Articles/965926/
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Date Actuelle
ven. 22 nov. - 07:26 CET