This shouldn't be exploitable on modern linux machines due to https://wiki.debia... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Moral_ on May 1, 2014 \| parent \| context \| favorite \| on: Null pointer dereference – new security bug for Op... This shouldn't be exploitable on modern linux machines due to https://wiki.debian.org/mmap_min_addr Who knows for embedded devices.

lawnchair_larry on May 2, 2014 [–]

It wouldn't be exploitable even without that, due to it being a userland dereference. The mmap 0 trick really only applies to kernel exploits. If you're in a position to mmap anything, you can already execute code.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact