oss-sec mailing list archives
Re: Vendor adoption of PIE INFO#934476 oss-security
From: Nick Kralevich <nnk () google com>
Date: Sun, 16 Feb 2014 12:19:23 -0800
On Sun, Feb 16, 2014 at 11:54 AM, Nick Kralevich <nnk () google com> wrote:
Statically linked executables with PIE are not supported today [4], although I'd love to see it in the future. [4] http://comments.gmane.org/gmane.comp.gnu.binutils/56324
Expanding on what I wrote earlier... The Google security patch rewards program [5] rewards security improvements in open source projects, such as GCC, llvm, and Android. While I can't speak for the committee which approves these rewards, I'd be happy to support and recommend rewards to any security researcher who implements statically linked PIE support. In my mind, there are three possible rewards here, one for GCC, llvm, and Android. [5] https://www.google.com/about/appsecurity/patch-rewards/ -- Nick Kralevich | Android Security | nnk () google com | 650.214.4037
Current thread:
- Vendor adoption of PIE INFO#934476 oss-security CERT(R) Coordination Center (Feb 11)
- Re: Vendor adoption of PIE INFO#934476 oss-security Solar Designer (Feb 15)
- Re: Vendor adoption of PIE INFO#934476 oss-security Stuart Henderson (Feb 16)
- Re: Vendor adoption of PIE INFO#934476 oss-security Christos Zoulas (Feb 16)
- Re: Vendor adoption of PIE INFO#934476 oss-security Stuart Henderson (Feb 16)
- Re: Vendor adoption of PIE INFO#934476 oss-security Nick Kralevich (Feb 16)
- Re: Vendor adoption of PIE INFO#934476 oss-security Nick Kralevich (Feb 16)
- Re: Vendor adoption of PIE INFO#934476 oss-security Stuart Henderson (Feb 16)
- Re: Vendor adoption of PIE INFO#934476 oss-security Solar Designer (Feb 15)
- Re: Vendor adoption of PIE INFO#934476 oss-security CERT(R) Coordination Center (Feb 16)