MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
memory
Recherche

A deep dive into Linux’s new mseal syscall

vendredi 25 octobre 2024, 23:24 , par OS News
If you love exploit mitigations, you may have heard of a new system call named mseal landing into the Linux kernel’s 6.10 release, providing a protection called “memory sealing.” Beyond notes from the authors, very little information about this mitigation exists. In this blog post, we’ll explain what this syscall is, including how it’s different from prior memory protection schemes and how it works in the kernel to protect virtual memory. We’ll also describe the particular exploit scenarios that mseal helps stop in Linux userspace, such as stopping malicious permissions tampering and preventing memory unmapping attacks.
↫ Alan Cao

The goal of mseal is to, well, literally seal a part of memory and protect its contents from being tampered with. It makes regions of memory immutable so that while a program is running, its memory contents cannot be modified by malicious actors. This article goes into great detail about this new feature, explains how it works, and what it means for security in the Linux kernel.

Excellent light reading for the weekend.
Lire la suite sur OS News
https://www.osnews.com/story/140991/a-deep-dive-into-linuxs-new-mseal-syscall/

Voir aussi

memory Thanks, Linus. Torvalds patch improves Linux performance by 2.6% TheRegister 6 Nov
mseal CRON#TRAP : ce système Linux émulé via QEMU permet de cibler Windows et passe inaperçu TooLinux 6 Nov
linux Apex Legends abandonne Linux et devient injouable sur Steam Deck GameKult 5 Nov
into Linux Lite : une fonction d'IA utile pour le bureau - et elle est plus subtile que vous ne le pensez ZDNet.fr 5 Nov
how Transform Linux into Windows 95 with Chicago95 3.0 -- bringing Microsoft's old-school cool to modern machines BetaNews 4 Nov
kernel Linux Mint Cinnamon desktop to integrate Night Light for improved eye comfort BetaNews 3 Nov
syscall Frustrated with Windows 11? The stunning Nitrux Linux 3.7.1 is the OS you deserve BetaNews 2 Nov
malicious Distribution Release: Pisi Linux 2.4 DistroWatch 1 Nov
contents Say goodbye to Microsoft Windows 11: Nitrux Linux 3.7.1 is the operating system you need! BetaNews 1 Nov
works GNOME and KDE working on end user-focused “official” Linux distributions, not entirely without risks OS News31 Oct
what Ditch Microsoft Windows 11 and switch to the Ubuntu-based Linux Lite 7.2 -- you won't regret it BetaNews31 Oct
its Distribution Release: Linux Lite 7.2 DistroWatch31 Oct
about Distribution Release: BackBox Linux 9 DistroWatch31 Oct
protect Linux : comment imprimer en utilisant uniquement la ligne de commande ZDNet.fr30 Oct
protection Fedora Linux 41 is here: Ditch Windows 11 for a fresh open-source experience BetaNews29 Oct
memory Le Thelio Astra sous Linux sort le 12 novembre TooLinux29 Oct
mseal Trouver le système d’exploitation Linux le plus adapté pour le cloud TooLinux25 Oct
linux Russian linux kernel maintainers removed due to sanctions BoingBoing24 Oct
into Linus Torvalds Comments On The Russian Linux Maintainers Being Delisted Slashdot24 Oct
how [$] A report from the 2024 Image-Based Linux Summit LWN.net22 Oct
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Date Actuelle
jeu. 21 nov. - 16:07 CET