SMEP / SMAP TL;DR: Kernel can’t execute or (with SMAP) read user pages — exploit must keep payload in kernel space. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References TODO