Check Point released an open-source fix for common Linux memory corruption security hole

guest · May 21, 2020

Check Point released an open-source fix for common Linux memory corruption security hole
For years, there's been a security problem with how the GNU C Library dealt with single-linked-lists
May 21, 2020
https://www.zdnet.com/article/check...common-linux-memory-corruption-security-hole/

For years, there's been a known security vulnerability hiding in the GNU C Library (glibc). This library, which is critical for Linux and many other operating systems and programs, had a dynamic memory management security hole that could be used for denial of service (DoS) attacks.
Now, the security company, Check Point, has issued an open-source patch, which will make it much more difficult to exploit this memory allocation (malloc) problem.

Now, the fix is in for this problem. This new built-in security mechanism is called Safe-Linking.
The patch is now being integrated with the most common standard C library implementation, glibc. Safe-Linking will be released in glibc 2.32 in August 2020. It's already up and running in glibc's popular embedded counterpart: uClibc-NG.
Click to expand...

Check Point: Safe-Linking – fixing a 20-year-old problem to make Linux exploitation harder for threat actor
Check Point Research: Safe-Linking – Eliminating a 20 year-old malloc() exploit primitive

Log in or Sign up

Check Point released an open-source fix for common Linux memory corruption security hole

guest Guest

Log in or Sign up

Check Point released an open-source fix for common Linux memory corruption security hole

guest Guest

Useful Searches