Linux Kernel 2.4 Useful Patches

Web access to the GIT repository - GIT access to the repository

pax : a strong protection against buffer overflows

PaX implements address randomization and non-executable stack and heap, which results in a strong protection against buffer overflows.

Last update:	2006/01/22
Description:	a strong protection against buffer overflows
Author(s):	The PaX Team
Conflicts with:	strict-overcommit, tunable-address-space
See also:	3G+pax, oc+pax, grsecurity
Abstract:	PaX implements address randomization and non-executable stack and heap, which results in a strong protection against buffer overflows.

Notes

Due to its nature, this patch conflicts with many other patches, but conflicts are relatively easy to fix. It is also implemented in the grsecurity patch.

Contents

Official patch - 2005/11/12
Consult home page below to check for user-space tools
External link : http://pax.grsecurity.net/
External link : http://pax.grsecurity.net/pax-linux-2.4.31-200511122240.patch
External link : http://pax.grsecurity.net/docs/index.html (doc)
Most recent patch (testing stage) - 2005/12/31
External link : http://www.grsecurity.net/~paxguy1/pax-linux-2.4.32-test3.patch

(C) Willy Tarreau - 2008-06-01