Bug#797530: 32bit pie memory layout leaves only ~100MB between heap and stack

To: Christoph Berg <christoph.berg@credativ.de>, 797530@bugs.debian.org
Subject: Bug#797530: 32bit pie memory layout leaves only ~100MB between heap and stack
From: Ben Hutchings <ben@decadent.org.uk>
Date: Tue, 01 Sep 2015 02:32:03 +0100
Message-id: <[🔎] 1441071123.9215.10.camel@decadent.org.uk>
Reply-to: Ben Hutchings <ben@decadent.org.uk>, 797530@bugs.debian.org
In-reply-to: <20150831114145.GA9758@msg.df7cb.de>
References: <20150831114145.GA9758@msg.df7cb.de>

Control: tag -1 upstream fixed-upstream
Control: found -1 4.0.8-2
Control: fixed -1 4.1.6-1

On Mon, 2015-08-31 at 13:41 +0200, Christoph Berg wrote:
> Source: linux
> Version: 3.16.7-ckt11-1
> Severity: important
> 
> I'm still seeing a memory layout for pie executables on 32 bit that
> only leaves a bit over 100MB between heap and stack:
[...]

This seems to have been fixed between 4.0 and 4.1, probably by:

commit d1fd836dcf00d2028c700c7e44d2c23404062c90
Author: Kees Cook <keescook@chromium.org>
Date:   Tue Apr 14 15:48:07 2015 -0700

    mm: split ET_DYN ASLR from mmap ASLR

This is meant as a security improvement, but wasn't cc'd to stable and
might be hard to backport (I haven't looked closely).

Ben.

-- 
Ben Hutchings
Horngren's Observation:
                   Among economists, the real world is often a special case.

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Prev by Date: Bug#797601: marked as done (linux-base: overlayfs rename to overlay causes issues with other packages)
Next by Date: Processed: Re: Bug#797530: 32bit pie memory layout leaves only ~100MB between heap and stack
Previous by thread: Bug#797601: marked as done (linux-base: overlayfs rename to overlay causes issues with other packages)
Next by thread: Processed: Re: Bug#797530: 32bit pie memory layout leaves only ~100MB between heap and stack
Index(es):
- Date
- Thread