Part 2/4:

Jeff Zuo, a maintainer at the Chromium organization, is well-versed in the world of memory corruption vulnerabilities. As the V8 engine within Chromium has been a source of many such vulnerabilities, Zuo has a deep understanding of the challenges posed by these attacks.

The Concept of mseal

mseal is a new system call introduced in the Linux kernel that aims to address the way hackers take advantage of memory corruption vulnerabilities. The idea behind mseal is to prevent the modification of memory page permissions, a technique often used in return-oriented programming (ROP) attacks.

In a traditional memory corruption attack, hackers would use a vulnerability to overflow a buffer and overwrite the return address on the stack. They could then redirect the program's execution to their own malicious code, or use ROP to chain together existing code snippets (gadgets) to achieve their desired outcome, such as making the stack executable.

[...]