Stories
Slash Boxes
Comments

SoylentNews is people

posted by n1 on Saturday July 30 2016, @07:21PM   Printer-friendly
from the beef-but-no-bacon dept.

Future versions of Android will be more resilient to exploits, thanks to developers' efforts to integrate the latest Linux kernel defenses into the operating system.

Android's security model relies heavily on the Linux kernel that sits at its core. As such, Android developers have always been interested in adding new security features that are intended to prevent potentially malicious code from reaching the kernel, which is the most privileged area of the operating system.

[...] One new configuration option called CONFIG_DEBUG_RODATA segments the kernel memory into multiple sections and limits how much of this memory is writeable and executable. Attackers need writeable and executable memory pages in order to inject malicious code into them via exploits, and then run that code with kernel privileges.

Another config option, called CONFIG_CPU_SW_DOMAIN_PAN, prevents the kernel from directly accessing user space memory, giving attackers even less control over where their exploits can execute code.

Also reported at The Register.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 0) by Anonymous Coward on Saturday July 30 2016, @09:12PM

    by Anonymous Coward on Saturday July 30 2016, @09:12PM (#382053)

    Dick Bathroom-Stall Man said anybody who wants root should have root. For the FREEEEEDOOOOOOOOOMS.