To ret2libc you first need to break ASLR. The point of the OpenBSD mitigation is... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		wahern on Aug 11, 2020 \| parent \| context \| favorite \| on: Emulating Windows system calls in Linux To ret2libc you first need to break ASLR. The point of the OpenBSD mitigation is to address JIT compiler exploits, which permit circumventing ASLR by injecting code to make syscalls directly.

saagarjha on Aug 11, 2020 [–]

Generally, if you have enough control that you can influence the JIT compiler to emit arbitrary instructions you either already have an address leak or could make one fairly trivially.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact