-----Original Message-----
From: Kees Cook <kees@debian.org>
To: Brchk05 <brchk05@aim.com>
Cc: debian-security@lists.debian.org
Sent: Sun, Oct 10, 2010 12:07 pm
Subject: Re: non-executable stack (via PT_GNU_STACK) not being enforced
Hi,
On Sun, Oct 10, 2010 at 09:53:40AM -0400, Brchk05 wrote:
> However, I am able to inject and execute shellcode from a stack local
character buffer in both versions. Is there another system option I am unaware
of that affects enforcement? Is enforcement not supported for my system
version?
Your CPU may not support NX enforcement. Check your dmesg output, and your
cpuflags line in /proc/cpuinfo for "nx".
See https://wiki.ubuntu.com/Security/Features#nx though ignore the nx-emu
notes, as that's not in Debian.
-Kees
--
Kees Cook @debian.org