Project Zero on Arm MTE

by
corbet
from LWN.net on (#6DG3J)
Google's Project Zero has spent some time studying the Arm memory taggingextension (MTE), support for which wasmerged into the 5.10 kernel, and postedthe results:

Despite its limitations, MTE is still by far the most promisingpath forward for improving C/C++ software security in 2023. Theability of MTE to detect memory corruption exploitation at thefirst dangerous access provides a significant improvement indiagnostic and potential security effectiveness.

There is aseparate section on weaknesses in the current kernel implementation ofMTE support.

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments