kernel4.20_bpf_LPE icon indicating copy to clipboard operation
kernel4.20_bpf_LPE copied to clipboard

Published 20 hours ago verified publisher icon ww9210

Metadata

exploit code for a bpf heap overflow vulnerability

There is a writeup for this vulnerability at https://www.anquanke.com/post/id/166819 (in Chinese). This is a local priviledge escalation exploit for a kernel bpf bug. affected version: 4.20-rc1, 4.20-rc2, 4.20-rc3, 4.20-rc4

user@syzkaller:~$ ./exp
rop_payload_initialized
uid=0(root) gid=0(root) groups=0(root) context=system_u:system_r:kernel_t:s0
# uname -a
Linux syzkaller 4.20.0-rc3 #1 SMP Thu Nov 22 15:12:38 CST 2018 x86_64 GNU/Linux
#

references: https://www.mail-archive.com/[email protected]/msg256073.html https://www.mail-archive.com/[email protected]/msg256054.html

Metadata

27
Stars
9
Forks
Watchers

Owner

verified publisher icon ww9210

Metadata

exploit code for a bpf heap overflow vulnerability

Back