Thursday, November 26, 2009

FreeBSD kernel level vulnerabilities

CONFidence 2009 presentation regarding recent FreeBSD vulnerabilities

Operating systems’ kernels are affected with the same security
vulnerabilities as userland software:
buffer overflows
format string bugs
race conditions
signedness issues

Most of general purpose operating systems has monolithic kernel
There is no true privilege separation, as in microkernel architecture

Download PDF

No comments: