Summary: | qt-webkit: add a USE flag to enable or disable JavaScript JIT | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Pavel Labushev <pavel.labushev> |
Component: | [OLD] Library | Assignee: | Qt Bug Alias <qt> |
Status: | RESOLVED DUPLICATE | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Pavel Labushev
2009-09-30 09:51:23 UTC
Why? Some more background info would be nice. (In reply to comment #1) > Why? Some more background info would be nice. JIT requires executable stack pages, and any process performing JavaScript on hardened kernels will require to run with PAX_MPROTECT disabled. This may allow easier code execution exploits to work (without the need in pure ret2libc-style stack preparations, that is harder). Apart from that the JIT itself can be vulnerable. *** This bug has been marked as a duplicate of bug 285792 *** |