/kernel-exploits

A bunch of proof-of-concept exploits for the Linux kernel

Primary LanguageC

kernel-exploits

CVE-2016-2384: a double-free in USB MIDI driver

CVE-2016-9793: a signedness issue with SO_SNDBUFFORCE and SO_RCVBUFFORCE socket options

CVE-2017-6074: a double-free in DCCP protocol

CVE-2017-7308: a signedness issue in AF_PACKET sockets

CVE-2017-10661: Linux kernel < 4.10.15 - Race Condition Privilege Escalation. PoC for CVE-2017-10661, triggers UAF with KASan enabled in kernel 4.10

CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch

[ CVE-2017-1000408](https://github.com/xairy/kernel-exploits/tree/master/ CVE-2017-1000408): GNU C Library Dynamic Loader glibc ld.so - Memory Leak / Buffer Overflow

CVE-2018-1000001: This tool exploits a buffer underflow in glibc realpath() and was tested against latest release from Debian, Ubuntu Mint.