Q&A: Ubuntu 9.10 securityNov 06, 2009, 07:34 (0 Talkback[s])
(Other stories by Mirko Zorz)
No-Size-Fits-All! An Application-Down Approach for Your Cloud Transformation REGISTER >
[ Thanks to An Anonymous Reader for this link. ]
"Modern CPUs allow regions of memory to be marked as "non-executable", like the stack and heap. This puts a stop to large classes of vulnerability exploits. For systems that do not have it (or do not run in 64bit mode), Ubuntu's kernel now includes a partial form of this, emulated in the kernel by way of memory segment limits.
0 Talkback[s] (click to add your comment)