Conversation

Andrey Konovalov

@andreyknvl

Exploit for CVE-2017-18344: https://github.com/xairy/kernel-exploits/blob/master/CVE-2017-18344/poc.c… Details: http://openwall.com/lists/oss-security/2018/08/09/6…

github.com

kernel-exploits/poc.c at master · xairy/kernel-exploits

My proof-of-concept exploits for the Linux kernel. Contribute to xairy/kernel-exploits development by creating an account on GitHub.

2:22 PM · Aug 9, 2018·Twitter Web Client

83

Retweets

3

Quote Tweets

146

Likes

Federico Bento

@uid1000

·

Aug 9, 2018

Replying to

@andreyknvl

Neat tricks! Sad that SMAP breaks them :(

1

Andrey Konovalov

@andreyknvl

·

Aug 9, 2018

Replying to

@uid1000

Thanks! If there's a way to set some 8 byte kernel global variable from an unprivileged user, it could be used to bypass SMAP (by storing the pointer to the data you want to leak in this variable), but nothing really came to mind when I've been thinking about this

1

1

Show replies

This Tweet is from a suspended account. Learn more

This Tweet is from a suspended account. Learn more

Show replies