---

2.4.36-pre1, Preventing NULL Dereferences

“‘I’ve just released Linux 2.4.36-pre1,’ announced 2.4
maintainer Willy Tarreau. He described a new feature found in the
first pre-release:

“‘In private discussions, Solar Designer proposed to restrict
the ability to map the NULL address to CAP_RAW_IO capable processes
only. The idea behind this was to prevent ‘normal’ users from
trying to exploit NULL dereferences in the kernel which have not
been discovered yet. This is purely a preventive measure…'”


Complete Story