Discover Security Projects News
Linux 6.1 Lands Code To Warn About W+X Mappings By Default
In addition to MGLRU and Maple Tree having been merged overnight, Linus Torvalds also picked up the x86/mm changes for Linux 6.1 that will now by default warn about W+X mappings.
As outlined a month ago, Linux 6.1 will now warn about W+X mappings by default. The Linux kernel has offered "CONFIG_DEBUG_WX" to warn about memory mappings at boot time that are both writable and executable as they can pose an obvious security risk. Finally with Linux 6.1 that kernel boot time warning will be enabled by default for x86_64.
The changes for Linux 6.1 also include various detection improvements/fixes around the W+X mappings. The goal is to ultimately have the kernel refuse to allow W+X mappings but that didn't happen for Linux 6.1.