Techly NewsGet the app

Get the latest tech news

Rustproofing Linux (Part 1/4 Leaking Addresses) (2023)


Rust is a programming language guaranteeing memory and thread safety while still being able to access raw memory and hardware. This sounds impossible, and it is, that’s why Rust has an unsafe keywo…

The dangerous code is effectively contained to unsafe blocks, which makes Rust an interesting option for embedded and system programming, where it could potentially be used to replace C, which has a long history of memory safety vulnerabilities. While printing a kernel address seems rather innocent – it’s just a number after all – these values are useful sources of information leakage that assists an attacker in bypassing KASLR when developing an exploit for a memory safety vulnerability. Developers must be cautious to avoid shooting themselves in the foot when porting a driver from C to Rust, especially if they previously relied on this config option to mitigate this class of vulnerability.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of rustproofing linux

rustproofing linux

Photo of leaking addresses

leaking addresses

« Calif. tech companies see laid-off workers as 'table scraps,' recruiters say
Vulnerabilities show why STARTTLS should be avoided if possible (2021) »