ExecutableStacks

Differences between revisions 8 and 13 (spanning 5 versions)

There are still some programs that have executable stack regions.

open bugs in LP
check an ELF binary: "readelf -lW $BIN | grep GNU_STACK" shows with "E" flag.
Gentoo write-up of what to do: http://www.gentoo.org/proj/en/hardened/gnu-stack.xml
-Wl,-z,noexecstack will change the behavior of compiler's asm-without-stack-markings defaults.

Main/Restricted Packages

Originally generated from the ELF files with executable stacks in Karmic main.

Uses Nested Functions which compiler generates as trampolines on the stack.

SecurityTeam/Roadmap/ExecutableStacks (last edited 2017-08-22 14:25:31 by jdstrand)

-  ⇤ ← Revision 8 as of 2009-08-03 16:10:34 → 
  Size: 1910
  Editor: 89
  Comment:
+   ← Revision 13 as of 2009-08-04 08:22:20 → ⇥
  Size: 2259
  Editor: 89
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 3:
-  * check an ELF binary: "readelf -l $BIN | grep GNU_STACK" shows with "E" flag.
+  * check an ELF binary: "readelf -lW $BIN | grep GNU_STACK" shows with "E" flag.
 Line 5:
+  * -Wl,-z,noexecstack will change the [[http://sourceware.org/ml/binutils/2003-05/msg00741.html|behavior]] of compiler's asm-without-stack-markings defaults.
-Line 10:
+Line 11:
- * zip
 * bogl
+ * [[https://launchpad.net/bugs/375121|zip]]
 * [[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539775|bogl]]
 * [[https://launchpad.net/bugs/408499|mono]]
-Line 14:
+Line 16:
-Uses [[http://grub.enbug.org/NestedFunctions|Nested Functions]] which compiler generates as trampolines on the stack.
+Uses [[http://grub.enbug.org/NestedFunctions|Nested Functions]] which compiler generates as [[http://gcc.gnu.org/onlinedocs/gccint/Trampolines.html|trampolines]] on the stack.
-Line 18:
+Line 20:
-== Stack Trampolines ==
+== Trampolines ==
-Line 35:
+Line 37:
- * mono