I'm assuming that even with PIE, the relative positioning of the statically link... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Retr0spectrum on Sept 28, 2016 \| parent \| context \| favorite \| on: Stali: A new static Linux distribution I'm assuming that even with PIE, the relative positioning of the statically linked libraries is constant. That means you only need a single address leak to be able to ROP to anywhere.

viraptor on Sept 28, 2016 [–]

That's how I understand it as well (it's a single rel/ro segment). But then again, in most cases you only need any address anyway. Rop gadgets are everywhere...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact