kernel / kernel-source

Clone
Source Code
GIT

4c43fa config: enable STACKPROTECTOR_STRONG (jsc#SLE-9120 bsc#1130365)

Authored and Committed by Michal Kubecek 4 years ago
raw patch tree parent
7 files changed. 7 lines added. 7 lines removed.
config/arm64/default
file modified
+1 -1
config/armv7hl/default
file modified
+1 -1
config/armv7hl/lpae
file modified
+1 -1
config/i386/pae
file modified
+1 -1
config/ppc64/default
file modified
+1 -1
config/ppc64le/default
file modified
+1 -1
config/x86_64/default
file modified
+1 -1 
    config: enable STACKPROTECTOR_STRONG (jsc#SLE-9120 bsc#1130365)
    
    Enable CONFIG_STACKPROTECTOR_STRONG on all architectures except s390x
    (where the feature is not available). This extends the number of functions
    which are protected by "stack canary" check to catch functions writing past
    their stack frame.
    
    This change was requested by SUSE security to make our kernels more
    resistant to some types of stack overflow attacks. Tests performed by
    kernel performance teams confirmed that performance impact is acceptable.
file modified
+1 -1
file modified
+1 -1
file modified
+1 -1
file modified
+1 -1
file modified
+1 -1
file modified
+1 -1
file modified
+1 -1
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.